HP A6600 Configuration Manual page 133
Hide thumbs
Also See for A6600:
- Configuration manual (426 pages) ,
- Getting started (222 pages) ,
- Limited warranty (41 pages)
Table of Contents
Advertisement
The portal server assembles the username and password into an authentication request message
3.
and sends it to the access device. Meanwhile, the portal server starts a timer to wait for an
authentication acknowledgment message.
The access device and the RADIUS server exchange RADIUS packets to authenticate the user.
4.
The access device sends an authentication reply to the portal server.
5.
The portal server sends an authentication success message to the authentication client to notify it of
6.
logon success.
The portal server sends an authentication reply acknowledgment message to the access device.
7.
With extended portal functions, the process includes these additional steps:
The security policy server exchanges security check information with the authentication client to
1.
check whether the authentication client meets the security requirements.
Based on the security check result, the security policy server authorizes the user to access certain
2.
resources, and it sends the authorization information to the access device. The access device then
controls access of the user based on the authorization information.
Re-DHCP authentication process (with CHAP/PAP authentication)
Figure 47 Re-DHCP authentication process
Authentication
client
1) Initiate a connection
6) Authentication
succeeds
7) The user obtains
a new IP address
10) Notify login
Re-DHCP authentication works as follows:
The first steps are the same as those in the direct authentication/cross-subnet authentication process.
After receiving the authentication success message, the authentication client obtains a new public IP
1.
address through DHCP and notifies the portal server that it has obtained a public IP address.
The portal server notifies the access device that the authentication client has obtained a new public
2.
IP address.
Detecting the change of the IP address by examining ARP packets received, the access device
3.
notifies the portal server of the change.
Portal server
2) CHAP authentication
3) Authentication request
Timer
5) Authentication reply
8) Discover user IP change
9) Detect user IP change
success
11) IP change
acknowledgment
12) Security check
Authentication/
Access device
accounting server
4) RADIUS
authentication
13) Authorization
121
Security
policy server
Advertisement
Table of Contents
Troubleshooting
