To Next Page

To Previous Page

DGS-3610 Series Configuration Guide Chapter 37 Configuration of 802.1X

37-11

37.7 Configuring Authorization

The AAA authorization enables the administrator to control services available to users. After

the AAA authorization service is enabled, the network device configures user sessions

through user configuration files stored locally or in the server. After the authorization, the

user can only use the services allowed in the profile.

Our product supports the network authorization for such networks as PPP and SLIP network

connections. It supports the following two authorization methods:

 Radius authorization method – The network access server requests the authorization

information from the Radius security server. The Radius security server stores the

user-specific right attribute pair.

 Local authorization method – The network access server accesses the local database

(defined through the username) and then grants the user with specific rights. In the

local database, only limited functions can be defined for the users, which are applicable

for simple authorization for the users.

Caution

At present, the configuration does support the 802.1X AAA authorization,

while the 802.1X is implemented through other commands.

37.7.1 Preparations for Authorization

The following tasks must be completed before the AAA authorization is configured:

 Enable the AAA server. For details, see AAA Overview.

 Configure the AAA authentication. The authorization is generally done after the user

passes the authentication and depends on the normal operation of the authentication.

For details of the AAA authentication, see Configuring Authentication.

 (Optional) configure security protocol parameters. If the security protocol is required for

authorization, it is required to configure the security protocol parameters. Our product

supports RADIUS. For details of the RADIUS, see Configuring RADIUS.

 (Optional) if the local authorization is required, you need to use the username

command to define user rights.

37.7.2 Configuring Authorization List

To enable AAA authorization, execute the following command in the global configuration

mode:

Command

Function

configure terminal

Enter the global configuration mode.

aaa new-model

Turn on the AAA switch.

D-Link xStack DGS-3610 Series User Manual

Other manuals for D-Link xStack DGS-3610 Series