Configuring Port Web Authentication (PWA)
SecureStack B3 Configuration Guide 20-57
Configuring Port Web Authentication (PWA)
About PWA
PWAprovidesawayofauthenticatingusersbeforeallowinggeneralaccesstothenetwork.A
PWAuser’saccesstothenetworkisrestricteduntilaftertheusersuccessfullylogsinviaaweb
browserusingtheEnterasysNetworks’web‐basedsecurityinterface.TheSecureStackB3device
willvalidatealllogincredentials
fromtheuserwithaRADIUSserverbeforeallowingnetwork
access.
PWAisanalternativeto802.1XandMACauthentication.Itallowsonlytheessentialprotocols
andservicesrequiredbytheauthenticationprocessbetweentheend‐stationandthenetwork.All
othertrafficisdiscarded.Whenauserisinthe
unauthenticatedstate,anyusertrafficrequesting
networkresourceswillnotbeallowed.
TologonusingPWA,theusermakesarequestviaawebbrowserforthePWAwebpageoris
automaticallyredirectedtothisloginpageafterrequestingaURLinabrowser.
Dependingupontheauthenticated
stateoftheuser,aloginpageoralogoutpagewilldisplay.
Whenausersubmitsusernameandpassword,theswitchthenauthenticatestheuserviaa
preconfiguredRADIUSserver.Iftheloginissuccessful,thentheuserwillbegrantedfullnetwork
accessaccordingtotheuser’spolicyconfiguration
ontheswitch.
Purpose
Toreview,enable,disable,andconfigurePortWebAuthentication(PWA).
Commands
Note: A license is required to enable PWA on the SecureStack B2 and B3. Refer to “Activating
Licensed Features” on page 3-26 for more information.
Note: One user per PWA-configured port can be authenticated on SecureStack B3 devices. Only
one method of authentication can be deployed per port.
For information about... Refer to page...
show pwa 20-58
set pwa 20-59
show pwa banner 20-60
set pwa banner 20-60
clear pwa banner 20-61
set pwa displaylogo 20-61
set pwa ipaddress 20-62
set pwa protocol 20-62
set pwa guestname 20-63
clear pwa guestname 20-63
set pwa guestpassword 20-64
To Next Page
Loading...
Need help?
General