EasyManua.ls Logo

HP V1910 Switch Series User Manual

HP V1910 Switch Series
470 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #356 background imageLoading...
Page #356 background image
342
AAA configuration
Overview
Introduction to AAA
Authentication, Authorization, and Accounting (AAA) provides a uniform framework for implementing
network access management. It can provide the following security functions:
 Authentication—Identifies users and determines whether a user is valid.
 Authorization—Grants different users different rights and controls their access to resources and
services. For example, a user who has successfully logged in to the device can be granted read and
print permissions to the files on the device.
 Accounting—Records all network service usage information of users, including the service type,
start time, and traffic. The accounting function not only provides the information required for
charging, but also allows for network security surveillance.
AAA usually uses a client/server model. The client runs on the network access server (NAS), which is
also referred to as the access device. The server maintains user information centrally. In an AAA network,
a NAS is a server for users but a client for the AAA servers. See Fi g u r e 315.
Figure 315 Network diagram for AAA
When a user tries to log in to the NAS, use the network resources, or access other networks, the NAS
authenticates the user. The NAS can transparently pass the user’s authentication, authorization, and
accounting information to the servers. The RADIUS protocol define how a NAS and a remote server
exchange user information between them.
In the network shown in Figure 315, there are two RADIUS servers. You can choose different servers for
different security functions. For example, you can use RADIUS server 1 for authentication and
authorization, and RADIUS server 2 for accounting.
You can choose the three security functions provided by AAA as required. For example, if your company
only wants employees to be authenticated before they access specific resources, you only need to
configure an authentication server. If network usage information is needed, you must also configure an
accounting server.

Table of Contents

Question and Answer IconNeed help?

Do you have a question about the HP V1910 Switch Series and is the answer not in the manual?

HP V1910 Switch Series Specifications

General IconGeneral
Product SeriesV1910
VLAN SupportYes
QoSYes
Ports8, 24, or 48 10/100/1000 ports
MAC Address Table Size8K entries
Power SupplyInternal power supply
Jumbo Frame SupportYes
Operating Humidity10% to 90% (non-condensing)

Summary

Configuration through the web interface

Default login information

Provides the default username and password for accessing the web interface.

Configuration at the CLI

Getting started with the CLI

Introduces using the Command Line Interface for device management.

Device maintenance

Software upgrade

Describes the process of upgrading the system software.

Port management configuration

Configuring a port

Guides through setting port operation parameters.

User management

Configuring users

Describes adding and managing local user accounts and groups.

SNMP configuration

Enabling SNMP

Guides on enabling and configuring SNMP settings.

VLAN configuration

Creating VLANs

Details the process of creating new VLANs.

MAC address configuration

MSTP configuration

Link aggregation and LACP configuration

Configuring link aggregation and LACP

Guides on setting up link aggregation and LACP.

DHCP overview

DHCP snooping configuration

Functions of DHCP snooping

Lists recording IP-to-MAC and ensuring authorized servers.

Diagnostic tools

Ping

Explains the ping command for verifying reachability.

Trace route

Describes the trace route command for tracing IP packets.

ARP management

ARP attack defense configuration

ARP detection

Introduces ARP detection to prevent man-in-the-middle attacks.

802.1X configuration

Configuring 802.1X globally

Guides on enabling and configuring 802.1X authentication globally.

AAA configuration

Introduction to AAA

Introduces Authentication, Authorization, and Accounting.

RADIUS configuration

Introduction to RADIUS

Users

Configuring a local user

PKI configuration

ACL configuration

ACL overview

Creating an IPv4 ACL

QoS configuration

Introduction to QoS

PoE configuration

Configuring PoE ports

Related product manuals