EasyManua.ls Logo

Alcatel-Lucent AOS-W 6.5.3.x - Page 931

Alcatel-Lucent AOS-W 6.5.3.x
1160 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
n service-name with any of the service names from Table 221
Using the User-Derivation Rules
The user role can be derived from attributes from the client’s association with an AP. For VoIP phones, you can
configure the devices to be placed in their user role based on the SSID or the Organizational Unit Identifier
(OUI) of the client’s MAC address.
User-derivation rules are executed before the client is authenticated.
In the WebUI
To derive a role based on SSID:
1. Navigate to Configuration > Security > Authentication > User Rules.
2. Click Add to add a new set of derivation rules. Enter a name for the set of rules, and click Add. The name
appears in the User Rules Summary list.
3. In the User Rules Summary list, select the name of the rule set to configure rules.
4. Click Add to add a rule. For Set Type, select Role from the drop-down menu.
5. For Rule Type, select ESSID.
6. For Condition, select equals.
7. For Value, enter the SSID used for the phones.
8. For Roles, select the user role you previously created.
9. Click Add.
10.Click Apply.
In the CLI
To derive a role based on SSID:
(host)(config)#aaa derivation-rules user <name of rule-set>
(host) (user-rule) #set role condition essid equals <ssid-name> set-value <The value that the
role/VLAN should be set to>
In the WebUI
To derive a role based on MAC OUI:
1. Navigate to Configuration > Security > Authentication > User Rules.
2. Click Add to add a new set of derivation rules. Enter a name for the set of rules, and click Add. The name
appears in the User Rules Summary list.
3. In the User Rules Summary list, select the name of the rule set to configure rules.
4. Click Add to add a rule. For Set Type, select Role from the drop-down menu.
5. For Rule Type, select MAC Address.
6. For Condition, select contains.
7. For Value, enter the first three octets (the OUI) of the MAC address of the phones (for example, the
Spectralink OUI is 00:09:7a).
8. For Roles, select the user role you previously created.
9. Click Add.
10.Click Apply.
AOS-W 6.5.3.x | User Guide Voice and Video | 931

Table of Contents