Configuring A Nas Id-Vlan Binding; Displaying And Maintaining Aaa - HP 10500 Series Configuration Manual
Security configuration guide
Hide thumbs
Also See for 10500 Series:
- Security configuration manual (596 pages) ,
- Configuration manual (512 pages) ,
- Specifications (42 pages)
Table of Contents
Advertisement
Step
3.
Tear down AAA user
connections. (In IRF
mode.)
Configuring a NAS ID-VLAN binding
The access locations of users can be identified by their access VLANs. In application scenarios where
identifying the access locations of users is a must, configure NAS ID-VLAN bindings on the device. Then,
when a user gets online, the device obtains the NAS ID by the access VLAN of the user and sends the
NAS ID to the RADIUS server through the NAS-identifier attribute.
To configure a NAS ID-VLAN binding:
Step
1.
Enter system view.
2.
Create a NAS ID profile and
enter NAS ID profile view.
3.
Configure a NAS ID-VLAN
binding.
Displaying and maintaining AAA
Task
Display the configuration
information of ISP domains.
Display information about
user connections. (In
standalone mode.)
Display information about
user connections. (In IRF
mode.)
Command
cut connection { access-type { dot1x |
mac-authentication | portal } | all | domain isp-name
| interface interface-type interface-number | ip
ip-address | mac mac-address | ucibindex ucib-index
| user-name user-name | vlan vlan-id } [ chassis
chassis-number slot slot-number ]
Command
system-view
aaa nas-id profile profile-name
nas-id nas-identifier bind vlan
vlan-id
Command
display domain [ isp-name ] [ | { begin | exclude | include }
regular-expression ]
display connection [ access-type { dot1x |
mac-authentication | portal } | domain isp-name | interface
interface-type interface-number | ip ip-address | mac
mac-address | ucibindex ucib-index | user-name user-name
| vlan vlan-id ] [ slot slot-number ] [ | { begin | exclude |
include } regular-expression ]
display connection [ access-type { dot1x |
mac-authentication | portal } | domain isp-name | interface
interface-type interface-number | ip ip-address | mac
mac-address | ucibindex ucib-index | user-name user-name
| vlan vlan-id ] [ chassis chassis-number slot slot-number ] [ |
{ begin | exclude | include } regular-expression ]
46
Remarks
This command is
effective only for
LAN and portal user
connections.
Remarks
N/A
You can apply a NAS ID profile to
an interface enabled with portal.
See
"Configuring portal
authentication."
By default, no NAS ID-VLAN
binding exists.
Remarks
Available in
any view.
Available in
any view.
Available in
any view.
Advertisement
Table of Contents
Troubleshooting
