Aaa For 802.1X Users By A Radius Server - HP 12500 Series Configuration Manual

[Switch] radius scheme rad
# Specify the primary authentication server.
[Switch-radius-rad] primary authentication 10.1.1.1 1812
# Set the shared key for secure authentication communication to expert.
[Switch-radius-rad] key authentication expert
# Specify the scheme to include the domain names in usernames to be sent to the RADIUS server.
[Switch-radius-rad] user-name-format with-domain
# Specify the service type for the RADIUS server, which must be extended when the RADIUS server
runs on IMC.
[Switch-radius-rad] server-type extended
[Switch-radius-rad] quit
# Configure the AAA methods for the domain.
[Switch] domain bbb
[Switch-isp-bbb] authentication login radius-scheme rad
[Switch-isp-bbb] authorization login radius-scheme rad
[Switch-isp-bbb] quit
Verify the configuration
3.
After you complete the configuration, the SSH user should be able to use the configured account
to access the user interface of the switch and can access the demands of level 0 through level 3. .
# Use the display connection command to view the connection information on the switch.
[Switch] display connection
Index=1
IP=192.168.1.58
IPv6=N/A
Total 1 connection(s) matched.

AAA for 802.1X users by a RADIUS server

Network requirements
As shown in
Use the RADIUS server to perform authentication, and authorization for 802.1X users.
•
Use MAC-based access control on GigabitEthernet 3/0/1 to authenticate all 802.1X users on the
•
port separately.
• Include the domain name in a username sent to the RADIUS server.
On the RADIUS server assigns authenticated users to VLAN 4, configure a user with the name
dot1x@bbb, and register the service for the user.
Set the shared keys for RADIUS communication to expert. Set the ports for authentication/authorization
to 1812.
,Username=hello@bbb
Figure 15, configure the switch to:
57