EasyManuals Logo
Home>HP>Switch>2530

HP 2530 User Manual

HP 2530
111 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #30 background imageLoading...
Page #30 background image
Table 3 RADIUS services supported on the switch
HP Vendor-Specific RADIUS
Attribute (VSA)
Standard RADIUS
AttributeApplicationService
4059per-userCoS (Priority)
46per-userIngress Rate-Limiting
48per-portEgress Rate-Limiting
ACLs
6192per-userIPv6 and/or IPv4 ACEs
(NAS-Filter-Rule)
63per-userNAS-Rules-IPv6 (sets IP mode to
IPv4-only or IPv4 and IPv6)
HP recommends using the Standard RADIUS attribute if available. Where both a standard attribute and a VSA are
available, the VSA is maintained for backwards compatibility with configurations based on earlier software releases.
If multiple clients are authenticated on a port where per-port rules are assigned by a RADIUS server, then the most
recently assigned rule is applied to the traffic of all clients authenticated on the port.
RADIUS client and server requirements
Clients can be dual-stack, IPv4-only, or IPv6 only.
Client authentication can be through 802.1X, MAC authentication, or web-based authentication.
(clients using web-based authentication must be IPv4-capable.)
Servers must support IPv4 and have an IPv4 address.
Optional HP PCM and IDM network management applications
For information on support for the above services in the PCM application using the HP PMC
Identity-Driven Manager (HP PMC IDM) plug-in, see the documentation for these applications on
the HP Networking website at www.hp.com/support/manuals. All RADIUS-based services described
in this chapter can be used without PCM or HP PMC IDM support.
RADIUS server configuration for CoS (802.1p priority) and rate-limiting
This section provides guidelines for configuring RADIUS servers to dynamically apply the features
listed in Table 4 (page 30) on ports supporting authenticated clients:
Table 4 CoS and rate-limiting services
Control method and operating notesService
Standard Attribute used in the RADIUS server: 59802.1p
Assigns a RADIUS-configured 802.1p priority to inbound
packets received from a specific client authenticated on a
switch port.
Preferred attribute for new or updated configurations.
Vendor-Specific Attribute (VSA) used in the RADIUS server.
NOTE: This attribute is assigned per-authenticated-user,
not per-port.
Attribute maintained for legacy configurations.
HP vendor-specific ID:11
VSA: 40
Setting: User-Priority-Table=xxxxxxxx where: x=desired
802.1p priority
Note: This is an eight-digit field. Enter the same x-value for
all eight digits.
Requires a port-access authentication method (802.1X,
Web Auth, or MAC Auth) configured on the client's switch
port.
30 Updates for the HP Switch Software Access Security Guide

Table of Contents

Other manuals for HP 2530

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the HP 2530 and is the answer not in the manual?

HP 2530 Specifications

General IconGeneral
BrandHP
Model2530
CategorySwitch
LanguageEnglish

Related product manuals