518
direct configuration, 145
direct configuration (local portal Web server),
144, 179
direct/cross-subnet authentication process
(with CHAP/PAP authentication), 127
displaying, 145
domain specification, 135
enabling, 131
extended cross-subnet, 166
extended direct, 159
extended functions, 123
extended re-DHCP, 162
fail-permit configuration, 139
file name rules, 143
local portal Web server, 125
local portal Web server configuration, 142,
144
local portal Web server page customization,
125
local portal Web server+client interaction
protocols, 125
maintaining, 145
max number users, 135
page customization, 142
page file compression+saving rules, 144
page request rules, 143
portal-free rule, 132
post request rules, 143
re-DHCP, 153
roaming enable, 141
security policy server, 124
server configuration, 130
server detection, 137
server detection+user synchronization, 169
system component interaction, 125
system components, 123
troubleshooting, 182
troubleshooting cannot log out users (access
device), 182
troubleshooting cannot log out users (RADIUS
server), 183
troubleshooting no page pushed for users,
182
troubleshooting users logged out still exist on
server, 183
types, 123
user access control, 132
user logout, 142
user online detection, 136
user synchronization configuration,
138
users cannot log in (re-DHCP), 184
Web server, 124
Web server configuration, 130
Web server detection configuration, 138
Web server reference, 132
power-up self-test, 448
PPPoE
security user profile configuration, 454
preshared key (PSK)
MACsec configuration, 466
preventing
detection and prevention. See attack D&P
priority
MACsec MKA key server priority, 466
procedure
applying interface NAS-ID profile, 141
applying MACsec MKA policy, 469
applying port security NAS-ID profile, 194
applying security IPsec policy to interface, 273
authenticating with 802.1X EAP relay, 69
authenticating with 802.1X EAP termination
mode, 70
binding security IPsec source interface to policy,
275
configuring security portal authentication
(cross-subnet for MPLS L3VPN), 177
configuring 802.1X, 80
configuring 802.1X authentication trigger, 85
configuring 802.1X Auth-Fail VLAN, 89
configuring 802.1X authorization VLAN, 96
configuring 802.1X basics, 94
configuring 802.1X critical VLAN, 90, 91
configuring 802.1X EAD assistant, 93, 100
configuring 802.1X guest VLAN, 87, 96
configuring 802.1X online user handshake, 84
configuring 802.1X+ACL assignment, 98
configuring AAA, 17
configuring AAA HWTACACS schemes, 33
configuring AAA HWTACACS server SSH user,
49
configuring AAA ISP domain accounting method,
47
configuring AAA ISP domain attribute, 44
configuring AAA ISP domain authentication
method, 44
configuring AAA ISP domain authorization
method, 45
configuring AAA ISP domain method, 43
configuring AAA LDAP administrator attributes,
41
configuring AAA LDAP scheme, 40
configuring AAA LDAP server IP address, 40
configuring AAA LDAP server SSH user
authentication, 56
To Next Page
Loading...
Need help?
General