H3C S7500E Series Operation Manual page 822
S7500e series
Hide thumbs
Also See for H3C S7500E Series:
- Command manual (1565 pages) ,
- Command reference manual (368 pages) ,
- Installation manual (182 pages)
Table of Contents
Advertisement
Operation Manual – 802.1x - MAC Authentication
H3C S7500E Series Ethernet Switches
II. Network diagram
Figure 1-14 Network diagram for ACL assigning
III. Configuration procedure
# Configure the IP addresses of the interfaces. (Omitted)
# Configure the RADIUS scheme.
<Sysname> system-view
[Sysname] radius scheme 2000
[Sysname-radius-2000] primary authentication 10.1.1.1 1812
[Sysname-radius-2000] primary accounting 10.1.1.2 1813
[Sysname-radius-2000] key authentication abc
[Sysname-radius-2000] key accounting abc
[Sysname-radius-2000] user-name-format without-domain
[Sysname-radius-2000] quit
# Create an ISP domain and specify the AAA schemes.
[Sysname] domain 2000
[Sysname-isp-2000] authentication default radius-scheme 2000
[Sysname-isp-2000] authorization
[Sysname-isp-2000] accounting default radius-scheme 2000
[Sysname-isp-2000] quit
# Configure ACL 3000 to deny packets destined for 10.0.0.1.
[Sysname] acl number 3000
[Sysname-acl-adv-3000] rule 0 deny ip destination 10.0.0.1 0
# Enable 802.1x globally.
[Sysname] dot1x
# Enable 802.1x for port Ethernet 2/0/1.
[Sysname] interface Ethernet 2/0/1
[Sysname-Ethernet2/0/1] dot1x
default radius-scheme 2000
1-24
Chapter 1 802.1x Configuration
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
