Operation Manual – AAA-RADIUS-HWTACACS-EAD
H3C S3600 Series Ethernet Switches-Release 1510 Chapter 2
EAD Configuration
2-3
Table 2-1 EAD configuration
Operation Command Description
Enter system view
system-view
—
Enter RADIUS scheme
view
radius scheme
radius-scheme-name
—
Configure the RADIUS
server type to extended
server-type extended
Required
Configure the IP address
of a security policy server
security-policy-server
ip-address
Required
Each RADIUS scheme
supports up to eight IP
addresses of security
policy servers.
2.4 EAD Configuration Example
I. Network requirements
In Figure 2-2:
z A user is connected to Ethernet1/0/1 on the switch.
z The user adopts 802.1x client supporting H3C extended function.
z You are required to configure the switch to use RADIUS server for remote user
authentication and use security policy server for EAD control on users.
The following are the configuration tasks:
z Connect the RADIUS authentication server 10.110.91.164 and the switch, and
configure the switch to use port number 1812 to communicate with the server.
z Configure the authentication server type to extended.
z Configure the encryption password for exchanging messages between the switch
and RADIUS server to “expert”.
z Configure the IP address 10.110.91.166 of the security policy server.
To Next Page
Loading...
Need help?
General