Combining 802.1X Acceleration With Pass-Through Authentication - Nortel 2360 Configuration Manual
Wlan-security switch 2300 series
Hide thumbs
Also See for 2360:
- Reference manual (480 pages) ,
- User manual (218 pages) ,
- Installation and basic configuration manual (172 pages)
Table of Contents
Advertisement
Combining 802.1X Acceleration with pass-through authentication
The following example illustrates how to enable PEAP-MS-CHAP-V2 offload for the marketing (mktg) group and
RADIUS pass-through authentication for members of engineering. This example assumes that engineering members are
using DNS-style naming, such as is used with EAP-TLS. A WSS server certificate is also required.
1
Configure the RADIUS server r1 at IP address 10.1.1.1 with the string starry for the key. Type the
following command:
WSS# set radius server r1 address 10.1.1.1 key starry
2
Configure the server group sg1 with member r1. Type the following command:
WSS# set server group sg1 members r1
3
To authenticate all 802.1X users of SSID bobblehead in the group mktg using PEAP on the WSS and
MS-CHAP-V2 on server sg1, type the following command:
WSS# set authentication dot1x ssid bobblehead mktg\* peap-mschapv2 sg1
4
To authenticate all 802.1X users of SSID aircorp in @eng.example.com via pass-through to sg1, type the
following command:
WSS# set authentication dot1x ssid aircorp *@eng.example.com pass-through sg1
5
Save the configuration:
WSS save config
success: configuration saved.
Nortel WLAN—Security Switch 2300 Series Configuration Guide
Configuring AAA for network users 559
- Quick Links:
- Using the Command-Line Interface
Hide quick links:
Advertisement
Table of Contents
