Example For Configuring Mac Address Authentication - Huawei Quidway S3700 Series Configuration Manual
Hide thumbs
Also See for Quidway S3700 Series:
- Configuration manual (398 pages) ,
- Quick start manual (70 pages) ,
- Manual (69 pages)
Table of Contents
Advertisement
Quidway S3700 Series Ethernet Switches
Configuration Guide - Security
sysname Quidway
#
dot1x enable
#
radius-server template rd1
radius-server shared-key cipher 3MQ*TZ,O3KCQ=^Q`MAF4<1!!
radius-server authentication 192.168.2.30 1812
radius-server retransmit 2
#
aaa
authentication-scheme web1
authentication-mode radius
domain isp1
authentication-scheme web1
radius-server rd1
#
interface GigabitEthernet0/0/1
dot1x mac-bypass
dot1x max-user 100
#
return
2.7.3 Example for Configuring MAC Address Authentication
Networking Requirements
As shown in
l
l
l
l
Figure 2-4 Networking diagram for configuring MAC address authentication
User
Configuration Roadmap
The configuration roadmap is as follows:
Issue 01 (2011-07-15)
Figure
2-4, the requirements are as follows:
Authentication is performed for the user connected to GE 0/0/1 to control the users access
to the Internet.
The authentication is performed by the RADIUS server.
The default authentication method is used, that is, the MAC address without hyphens is
used as the user name in authentication.
The maximum number of users on GE 0/0/1 is 100.
RADIUS Server
192.168.2.30
GE0/0/2
192.168.2.10
GE0/0/1
Switch
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
VLANIF20
GE0/0/3
2 NAC Configuration
Internet
81
Advertisement
Table of Contents
