EasyManuals Logo
Home>HPE>Network Router>FlexNetwork MSR Series

HPE FlexNetwork MSR Series Comware 5 Security Configuration Guide

HPE FlexNetwork MSR Series
547 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #300 background imageLoading...
Page #300 background image
287
3. The portal server assembles the username and password into an authentication request
message and sends it to the access device. Meanwhile, the portal server starts a timer to wait
for an authentication reply message.
4. The access device and the RADIUS server exchange RADIUS packets to authenticate the
user.
5. The access device sends an authentication reply to the portal server.
6. The portal server sends an authentication success message to the authentication client to
notify it of logon success.
7. The portal server sends an authentication reply acknowledgment message to the access
device.
With extended portal functions, the process includes additional steps:
8. The security policy server exchanges security check information with the authentication client
to check whether the authentication client meets the security requirements.
9. Based on the security check result, the security policy server authorizes the user to access
certain resources, and sends the authorization information to the access device. The access
device then controls access of the user based on the authorization information.
Re-DHCP authentication process (with CHAP/PAP authentication)
Figure 90 Re-DHCP authentication process
The re-DHCP authentication process is as follows:
Step 1 through step 6 are the same as those in the direct authentication/cross-subnet authentication
process.
7. After receiving the authentication success message, the authentication client obtains a new
public IP address through DHCP and notifies the portal server that it has obtained a public IP
address.
8. The portal server notifies the access device that the authentication client has obtained a new
public IP address.
9. Detecting the change of the IP address by examining ARP packets received, the access device
notifies the portal server of the change.
Authentication/
accounting server
Authentication
client
Portal server
Access device
6) Authentication
succeeds
Security
policy server
12) Security check
13) Authorization
7) The user obtains
a new IP address
8) Discover user IP change
10) Notify login
success
9) Detect user IP change
11) IP change
acknowledgment
Timer
1) Initiate a connection
2) CHAP authentication
3) Authentication request
5) Authentication reply
4) RADIUS
authentication

Table of Contents

Other manuals for HPE FlexNetwork MSR Series

Preview: Configuration Guide
Configuration Guide861 pages
Preview: Comware 7 Layer 3 - Ip Services Configuration Guides
Comware 7 Layer 3 - Ip Services Configuration Guides554 pages
Preview: Guide
Guide213 pages
Preview: Command Reference
Command Reference120 pages
Preview: Comware 5 Layer 2 - Wan Access Configuration Guide
Comware 5 Layer 2 - Wan Access Configuration Guide420 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the HPE FlexNetwork MSR Series and is the answer not in the manual?

HPE FlexNetwork MSR Series Specifications

General IconGeneral
BrandHPE
ModelFlexNetwork MSR Series
CategoryNetwork Router
LanguageEnglish

Related product manuals