EasyManua.ls Logo

Alcatel-Lucent OmniSwitch 6860 - Translated Safety Warnings

Alcatel-Lucent OmniSwitch 6860
148 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
OmniSwitch OS6860/OS6900/OS10K Troubleshooting Guide Part No.032996-00 Rev.A
AOS Release 7.X and 8.X January 2015
Alcatel-Lucent Page 116 of 148
16. Troubleshooting 802.1X
Summary of the commands in this chapter is listed here:
_____________________________________________________________
show unp user
show unp edge-user details
_____________________________________________________________
This section concerns the OmniSwitch 6860 running AOS 8
1) Verify the configuration as there are multiple profiles and associations to create:
RADIUS server to aaa profile:
aaa radius-server "clearpass" host 172.26.61.6
aaa profile "clearpass-aaa-profile"
aaa profile "clearpass-aaa-profile" device-authentication 802.1x "clearpass"
aaa profile "clearpass-aaa-profile" accounting 802.1x "clearpass"
Edge profile and aaa profile to edge template,
unp edge-profile clearpass-ep
unp vlan-mapping edge-profile clearpass-ep vlan 21
unp edge-template clearpass-et
unp edge-template clearpass-et 802.1x-authentication enable
unp edge-template clearpass-et 802.1x-authentication pass-alternate edge-profile clearpass-ep
unp edge-template clearpass-et aaa-profile clearpass-aaa-profile
Edge template to the port
unp port 1/1/45 port-type edge
unp port 1/1/45 edge-template clearpass-et
2) Test the RADIUS server:
RADIUS test tool allows the user to test the RADIUS server reachability from the OmniSwitch. Use this
command to start the authentication or accounting test for the specified user name and password.
aaa test-radius-server clearpass type authentication user alcatel password alcatel123 method pap
Testing Radius Server <172.26.61.6/clearpass>
Access-Accept from 172.26.61.6 Port 1812 Time: 212 ms
Returned Attributes
Filter-ID = employee
Be aware that the authentication method can only be MD5 or PAP, the server may not be configured for those
methods so additional RADIUS server configuration might be required..
3) Check the authentication status
-> show unp user
Port Username Mac address IP Vlan Profile Type Status Source
1/1/47 julien 00:15:17:51:d3:8f 192.168.21.13 21 clearpass-ep Edge Active Local
Total users : 1
-> show unp edge-user details
Port: 1/1/47
MAC-Address: 00:15:17:51:d3:8f
Access Timestamp = 02/21/2014 00:46:10,
User Name = julien,
IP-Address = 192.168.21.13,

Table of Contents

Other manuals for Alcatel-Lucent OmniSwitch 6860

Preview: Hardware User's Guide
Hardware User's Guide122 pages

Related product manuals