Configuration Prerequisites - HP 10500 Series Configuration Manual
Security configuration guide
Hide thumbs
Also See for 10500 Series:
- Security configuration manual (596 pages) ,
- Configuration manual (512 pages) ,
- Specifications (42 pages)
Table of Contents
Advertisement
Task
Controlling access of portal
users
Configuring RADIUS related
attributes
Specifying a source IP address for outgoing portal packets
Specifying an auto redirection URL for authenticated portal users
Configuring portal detection
functions
Logging off portal users
Configuration prerequisites
Although the portal feature provides a solution for user identity authentication and security check, the
portal feature cannot implement this solution by itself. RADIUS authentication must be configured on the
access device to cooperate with the portal feature to complete user authentication.
The prerequisites for portal authentication configuration are as follows:
The portal server and the RADIUS server have been installed and configured properly.
•
With re-DHCP authentication, the IP address check function of the DHCP relay agent is enabled on
•
the access device, and the DHCP server is installed and configured properly.
•
The portal client, access device, and servers can reach each other.
With RADIUS authentication, usernames and passwords of the users are configured on the RADIUS
•
server, and the RADIUS client configurations are performed on the access device. For information
about RADIUS client configuration, see
To implement extended portal functions, install and configure IMC EAD, and make sure the ACLs
•
configured on the access device correspond to those specified for the resources in the quarantined
area and for the restricted resources on the security policy server. For information about security
policy server configuration on the access device, see
For installation and configuration about the security policy server, see IMC EAD Security Policy Help.
The ACL for resources in the quarantined area and that for restricted resources correspond to the isolation
ACL and the security ACL on the security policy server, respectively.
You can modify the authorized ACLs on the access device. However, your changes take effect only for
portal users logging on after the modification.
For portal authentication to work normally, make sure the device name is no more than 16 characters.
Configuring a portal-free rule
Configuring an authentication source subnet
Setting the maximum number of online portal users
Specifying a portal authentication domain
Specifying NAS-Port-Type for an interface
Specifying the NAS-Port-ID for an interface
Specifying a NAS ID profile for an interface
Configuring the portal server detection function
Configuring portal user information synchronization
"Configuring
132
AAA."
"Configuring
AAA."
Remarks
Optional.
Optional.
Optional.
Optional.
Optional.
Optional.
Advertisement
Table of Contents
Troubleshooting
