Configuring Access Guardian Quick Steps for Configuring Access Guardian
OmniSwitch AOS Release 6 Network Configuration Guide September 2009 page 34-9
To verify the HIC InfoSys CyberGatekeeper server information configured for the swtich, use the show
aaa hic server command:
-> show aaa hic server
HIC Server Name: cgs
HIC Server IP Address: 100.10.10.1
HIC Server UDP Port: 11707
HIC Server Key: *******
To display the HIC status for host devices, use the show aaa hic host command:
-> show aaa hic host
HIC Host MAC Status
--------------------+--------------
00:1a:a0:b1:fa:e5 Successful
00:b0:d0:2a:0e:2e Failed
00:b0:d0:2a:11:60 Successful
See the OmniSwitch CLI Reference Guide for information about the fields in this display.
Quick Step for Configuring QoS Policy Lists
Assigning a QoS policy list to Access Guardian User Network Profiles (UNP) is done to further enforce
the access of a device to network resources. A policy list consists of one or more QoS policy rules; the list
is assigned a name, which is used to associate the list with the UNP. The following quick steps provide a
breif tutorial for configuring a QoS policy list:
1 Create one or more QoS policy rules using the policy rule command. (For more information about
configuring QoS policy rules, see Chapter 40, “Configuring QoS.”)
-> policy rule r1 condition c1 action a1
2 To create a QoS policy list, use the policy list command and specify the names of one or more exist-
ing QoS policy rules to add to the list.
-> policy list temp_rules r1 r2 r3
3 Assign the QoS policy list to a UNP using the aaa user-network-profile command.
-> aaa user-network-profile name guest_user vlan 500 policy-list-name temp_rules
Note. Verify the QoS policy list configuration using the show policy list command:
-> show policy list
Group Name From Type Enabled Entries
+list1 cli unp Yes r1
r2
acct_rules cli unp Yes r3
temp_rules cli unp No r1
r2
r3
To verify the UNP association for the policy list, use the show aaa user-network-profile command:
To Next Page
Loading...
