Configuration Prerequisites; Specifying The Portal Server; Specifying The Local Portal Server For Layer 2 Portal Authentication - HP 3600 v2 Series Security Configuration Manual

Task
Configuring portal stateful failover
Specifying an auto redirection URL for authenticated portal users
Configuring portal detection
functions
Logging off portal users

Configuration prerequisites

The portal feature provides a solution for user identity authentication and security check. However, the
portal feature cannot implement this solution by itself. RADIUS authentication needs to be configured on
the access device to cooperate with the portal feature to complete user authentication.
The prerequisites for portal authentication configuration are as follows:
The portal server and the RADIUS server have been installed and configured properly. Local portal
•
authentication requires no independent portal server be installed.
With re-DHCP authentication, the IP address check function of the DHCP relay agent is enabled on
•
the access device, and the DHCP server is installed and configured properly.
The portal client, access device, and servers can reach each other.
•
• With RADIUS authentication, usernames and passwords of the users are configured on the RADIUS
server, and the RADIUS client configurations are performed on the access device. For information
about RADIUS client configuration, see the chapter "AAA configuration."
To implement extended portal functions, install and configure iMC EAD, and make sure that the
•
ACLs configured on the access device correspond to those specified for the resources in the
quarantined area and for the restricted resources on the security policy server. For information
about security policy server configuration on the access device, see the chapter "AAA
configuration."
NOTE:
For installation and configuration about the security policy server, see
•
The ACL for resources in the quarantined area and that for restricted resources correspond to isolation
•
ACL and security ACL on the security policy server respectively.
You can modify the authorized ACLs on the access device. However, your changes take effect only for
•
portal users logging on after the modification.

Specifying the portal server

Specifying the local portal server for Layer 2 portal
authentication
Layer 2 portal authentication uses the local portal server. Specify the IP address of a Layer 3 interface on
the device that is routable to the portal client as the listening IP address of the local portal server. HP
Configuring the portal server detection function
Configuring portal user information synchronization
136
Remarks
Optional
Optional
Optional
Optional
iMC EAD Security Policy Help
.