51
Figure 15 Configure AAA for 802.1X users by a RADIUS server
Configuration procedure
NOTE:
This example assumes that the RADIUS server runs iMC PLAT 5.0 (E0101), iMC UAM 5.0 (E0101), and
iMC CAMS 5.0 (E0101).
Configure the interfaces and VLANs as shown in Figure 15. Make sure that the host can get a new IP
address manually or automatically and can access resources in the authorized VLAN after passing
authentication.
1. Configure the RADIUS server (iMC PLAT 5.0).
# Add an access device. See Figure 16.
Log in to the iMC management platform
, click the Service tab, and select User Access Manager > Access
Device from the navigation tree to enter the Access Device List page. Then, click Add to enter the Add
Access Device page, and perform the following configurations:
a. Set the shared key for authentication and accounting to expert.
b. Specify the ports for authentication and accounting as 1812 and 1813, respectively.
c. Select LAN Access Service as the service type.
d. Select HP(A-Series) as the access device type.
e. Select the switch from the device list, or manually add the switch whose IP address is 10.1.1.2.
f. Adopt the default settings for other parameters, and click OK to finish the operation.
The IP address of the access device specified here must be the same as the source IP address of the
RADIUS packets sent from the switch (which is the IP address of the outbound interface by default) or the
IP address specified with the nas-ip or radius nas-ip command on the switch.
To Next Page
Loading...
Need help?
General