HP A5500 SI Switch Series

HP A5500 SI Switch Series

443 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

50

# Create ISP domain domain1; reference scheme1 for the authentication, authorization, and accounting

of LAN users; specify domain1 as the default ISP domain.

[SwitchA] domain domain1

[SwitchA-isp-domian1] authentication lan-access radius-scheme scheme1

[SwitchA-isp-domian1] authorization lan-access radius-scheme scheme1

[SwitchA-isp-domian1] accounting lan-access radius-scheme scheme1

[SwitchA-isp-domian1] quit

[SwitchA] domain default enable domain1

# Globally enable 802.1X and then enable it on GigabitEthernet 1/0/1 and GigabitEthernet 1/0/2

respectively.

[SwitchA] dot1x

[SwitchA] interface gigabitethernet 1/0/1

[SwitchA-GigabitEthernet1/0/1] dot1x

[SwitchA-GigabitEthernet1/0/1] quit

[SwitchA] interface gigabitethernet 1/0/2

[SwitchA-GigabitEthernet1/0/2] dot1x

[SwitchA-GigabitEthernet1/0/2] quit

3. Configure Switch B

# Globally enable IGMP snooping.

<SwitchB> system-view

[SwitchB] igmp-snooping

[SwitchB-igmp-snooping] quit

# Create VLAN 100, assign GigabitEthernet 1/0/1 through GigabitEthernet 1/0/3 to this VLAN, and

enable IGMP snooping in this VLAN.

[SwitchB] vlan 100

[SwitchB-vlan100] port gigabitethernet 1/0/1 to gigabitethernet 1/0/3

[SwitchB-vlan100] igmp-snooping enable

[SwitchB-vlan100] quit

# Create a user profile profile2 to allow users to join or leave only one multicast group, 224.1.1.1.

Then, enable the user profile.

[SwitchB] acl number 2001

[SwitchB-acl-basic-2001] rule permit source 224.1.1.1 0

[SwitchB-acl-basic-2001] quit

[SwitchB] user-profile profile2

[SwitchB-user-profile-profile2] igmp-snooping access-policy 2001

[SwitchB-user-profile-profile2] quit

[SwitchB] user-profile profile2 enable

# Create a RADIUS scheme scheme2; set the service type for the RADIUS server to extended; specify the

IP addresses of the primary authentication/authorization server and accounting server as 3.1.1.1; set

the shared keys to 321123; specify that a username sent to the RADIUS server carry no domain name.

[SwitchB] radius scheme scheme2

[SwitchB-radius-scheme2] server-type extended

[SwitchB-radius-scheme2] primary authentication 3.1.1.1

[SwitchB-radius-scheme2] key authentication 321123

[SwitchB-radius-scheme2] primary accounting 3.1.1.1

[SwitchB-radius-scheme2] key accounting 321123

Table of Contents

Related product manuals

Preview: HP A5500 HI Series

HP A5500 HI Series

Preview: HP A3100-8 v2 SI

HP A3100-8 v2 SI

Preview: HP 5120 SI Series

HP 5120 SI Series

Preview: HP A5120 Series

HP A5120 Series

Preview: HP A5830 Series

HP A5830 Series

HP A5800 Series

Preview: HP A5820X Series

HP A5820X Series

Preview: HP A5120 EI Series

HP A5120 EI Series

HP A5120-24G EI TAA

Preview: HP Aruba JL253A

HP Aruba JL253A

Preview: HP A3100-8 v2 EI

HP A3100-8 v2 EI