HP 10500 Series Configuration Manual page 343
Security configuration guide
Hide thumbs
Also See for 10500 Series:
- Security configuration manual (596 pages) ,
- Configuration manual (512 pages) ,
- Specifications (42 pages)
Table of Contents
Advertisement
comparison of EAP relay and EAP termination
modes (802.1X), 76
configuring ISP domain method (AAA), 41
configuring MAC authentication, 1 1 1, 1 13, 1 18
configuring MAC authentication globally, 1 14
configuring MAC authentication on port, 1 14
configuring source subnet, 135
creating user profile, 188
cross-subnet across VPNs portal configuration, 163
cross-subnet portal configuration, 149
cross-subnet
portal
configuration, 155
direct portal configuration, 142
direct portal with extended functions configuration,
151
EAP relay (802.1X), 77
EAP termination (802.1X), 78
enabling
802.1X
re-authentication function, 93
enabling portal authentication, 133
enabling user profile, 189
extended portal functions, 124
IKE configuration, 315
initiating (802.1X), 75
IPsec, 301
Layer 3 portal authentication process, 127
level switching authentication for Telnet user
(HWTACACS), 66
local RADIUS authentication/authorization for
Telnet user (AAA), 48
MAC authentication approaches, 1 1 1
MAC authentication delay configuration, 1 17
MAC authentication timer, 1 12
mechanism (RADIUS), 2
Message-Authentication attribute (802.1X), 75
port security mode, 166
portal client, 125
portal configuration, 124, 142
portal direct/cross-subnet authentication process,
128
portal modes, 126
portal server (IMC PLAT 5.0) configuration, 143,
158
portal support for EAP, 127
portal support for EAP process, 130
portal system components, 124
procedures (802.1X), 76
RADIUS server for SSH/Telnet user (AAA), 49
re-DHCP portal configuration, 147
re-DHCP
portal
with
configuration, 153
with
extended
functions
periodic
online
extended
functions
re-DHCP process, 129
setting 802.1X timeout timers, 89
setting max number 802.1X authentication request
attempts, 88
specifying 802.1X mandatory port authentication
domain, 92
specifying auto redirect URL for users (portal
authentication), 138
specifying MAC authentication domain, 1 15
specifying portal domain, 136
SSH, 201
SSH configuration, 200
user profile configuration, 188
using 802.1X authentication with other features,
80
using MAC authentication with other features, 1 12
Authentication, Authorization, and Accounting. See
user
AAA
Auth-Fail VLAN
802.1X authentication, 82
configuring 802.1X, 95
port security support, 169
authorization
802.1X port status, 72
configuring ISP domain method (AAA), 42
ignoring server information (port security), 175
local RADIUS authentication/authorization for
Telnet user (AAA), 48
RADIUS server for SSH/Telnet user (AAA), 49
setting 802.1X port authorization state, 87
authorized-force (802.1X port authorization state), 87
auto
802.1X port authorization state, 87
MFF auto-mode in ring network configuration, 278
MFF auto-mode in tree network configuration, 277
redirection (portal), 138
autoLearn mode (port security MAC address
learning), 168
automatic
MFF operation mode, 274
scanning (ARP attack protection), 264, 265
binding
dynamic entries (IPv6 source guard), 237
static entries (IP source guard), 236
black hole routing (ARP attack protection), 252
blockmac (port security intrusion protection), 172
broadcast
MFF configuration, 273, 275, 277
MFF network port, 274
CAR parameter (RADIUS), 30
CHAP/PAP (portal authentication), 128, 129
class attribute (RADIUS), 30
333
Advertisement
Table of Contents
Troubleshooting
