BAS-IPv6: Not configured
User detection: Not configured
Action for server detection:
Server type
--
Layer3 source network:
IP address
Destination authenticate subnet:
IP address
Before passing portal authentication, a user that uses the HPE iNode client can access only the
authentication page http://192.168.0.111:8080/portal. All Web requests from the user will be
redirected to the authentication page.
•
The user can access the resources permitted by ACL 3000 after passing only identity
authentication.
•
The user can access Internet resources permitted by ACL 3001 after passing both identity
authentication and security check.
# After the user passes identity authentication and security check, use the following command to
display information about the portal user.
[SwitchA] display portal user interface vlan-interface 4
Total portal users: 1
Username: abc
Portal server: newpt
State: Online
VPN instance: --
MAC
0000-0000-0000
Authorization information:
DHCP IP pool: N/A
ACL: 3001
CAR: N/A
Configuring portal server detection and portal user
synchronization
Network requirements
As shown in
assigned a public IP address either manually or through DHCP. A portal server acts as both a portal
authentication
authentication/accounting server.
•
Configure direct portal authentication on the switch, so the host can access only the portal
server before passing the authentication and access Internet resources after passing the
authentication.
•
Configure the switch to detect the reachability state of the portal authentication server, send log
messages upon state changes, and disable portal authentication when the authentication
server is unreachable.
•
Configure the switch to synchronize portal user information with the portal server periodically.
Server name
--
IP
8.8.8.2
Figure
60, the host is directly connected to the switch (the access device). The host is
server
and
a
VLAN
Interface
4
Vlan-interface4
portal
Web
server.
178
Action
--
Prefix length
Prefix length
A
RADIUS
server
acts
as
the