Dynamic Vlan With Radius Server Configuration Example - Huawei Quidway S6500 Series Operation Manual
Hide thumbs
Also See for Quidway S6500 Series:
- Supplementary manual (5 pages) ,
- Command manual (845 pages)
Table of Contents
Advertisement
Operation Manual - Security
Quidway S6500 Series Ethernet Switches
Local server method is similar to remote RADIUS authentication. But you should modify
the server IP address to 127.0.0.1, authentication key to huawei, the UDP port number
of the authentication server to 1645.
2.5.3 Dynamic VLAN with RADIUS Server Configuration Example
I. Networking Requirements
The RADIUS server (taking Windows IAS as example) delivers sting VLAN ID "test",
which corresponds to the name of VLAN 100 on the switch. The switch can add the port
to VLAN 100 when the server delivers "test".
II. Networking diagram
See Figure 2-1.
III. Configuration procedure
1)
Specify RADIUS scheme
[Quidway] radius scheme ias
[Quidway-radius-ias] primary authentication 10.110.91.164
[Quidway-radius-ias] primary accounting 10.110.91.164
[Quidway-radius-ias] key authentication hello
[Quidway-radius-ias] key accounting hello
[Quidway-radius-ias] quit
2)
Create ISP domain
[Quidway] domain ias
[Quidway-isp-ias] scheme radius-scheme ias
3)
Configure VLAN delivery mode as string
[Quidway-isp-ias] vlan-assignment-mode string
[Quidway-isp-ias] quit
4)
Create a VLAN and specify its name.
# Create a VLAN.
[Quidway] vlan 100
# Configure name of the delivered VLAN.
[Quidway-vlan100] name test
5)
Configure on the Windows IAS server the VLAN delivery mode to string and the
name of the delivered VLAN to "test".
Huawei Technologies Proprietary
2-30
Chapter 2 AAA and RADIUS Protocol
Configuration
- Quick Links:
- Function Features
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
