Acl Assignment Configuration Example - HP 10500 Series Configuration Manual
Security configuration guide
Hide thumbs
Also See for 10500 Series:
- Security configuration manual (596 pages) ,
- Configuration manual (512 pages) ,
- Specifications (42 pages)
Table of Contents
Advertisement
# Set the MAC authentication timers.
[Device] mac-authentication timer offline-detect 180
[Device] mac-authentication timer quiet 180
# Specify username aaa and password 123456 in plain text for the account shared by MAC
authentication users.
[Device] mac-authentication user-name-format fixed account aaa password simple 123456
Verifying the configuration
# Display MAC authentication settings and statistics.
<Device> display mac-authentication
MAC address authentication is enabled.
User name format is fixed account
Fixed username:aaa
Fixed password:******
Silent Mac User info:
MAC ADDR
Gigabitethernet1/0/1 is link-up
MAC address authentication is enabled
Authenticate success: 1, failed: 0
Max number of on-line users is 1024
Current online user number is 1
MAC ADDR
00e0-fc12-3456
# After a user passes MAC authentication, use the display connection command to display online user
information.
<Device> display connection
Slot:
1
Index=29
IP=N/A
IPv6=N/A
MAC=00e0-fc12-3456
Total 1 connection(s) matched on slot 1.
Total 1 connection(s) matched..
ACL assignment configuration example
Network requirements
As shown in
RADIUS servers to perform authentication, authorization, and accounting.
Offline detect period is 180s
Quiet period is 180s.
Server response timeout value is 100s
The max allowed user number is 2048 per slot
Current user number amounts to 1
Current domain is 2000
Authenticate state
MAC_AUTHENTICATOR_SUCCESS
,Username=aaa@2000
Figure
48, a host connects to the device's port GigabitEthernet 1/0/1, and the device uses
From Port
Auth Index
121
Port Index
29
Advertisement
Table of Contents
Troubleshooting
