EasyManuals Logo
Home>HPE>Network Router>FlexNetwork MSR Series

HPE FlexNetwork MSR Series Comware 5 Security Configuration Guide

HPE FlexNetwork MSR Series
547 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #305 background imageLoading...
Page #305 background image
292
Configuration prerequisites
Although the portal feature provides a solution for user identity authentication and security check, the
portal feature cannot implement this solution by itself. RADIUS authentication must be configured on
the access device to cooperate with the portal feature to complete user authentication.
The prerequisites for portal authentication configuration are as follows:
• The portal server and the RADIUS server have been installed and configured correctly. Local
portal authentication requires no independent portal server be installed.
• With re-DHCP authentication, the IP address check function of the DHCP relay agent is
enabled on the access device, and the DHCP server is installed and configured correctly.
• The portal client, access device, and servers can reach each other.
• With RADIUS authentication, usernames and passwords of the users are configured on the
RADIUS server, and the RADIUS client configurations are performed on the access device. For
information about RADIUS client configuration, see "Configuring AAA."
• To implement extended portal functions, install and configure CAMS EAD or IMC EAD, and
make sure that the ACLs configured on the access device correspond to those specified for the
resources in the quarantined area and for the restricted resources on the security policy server.
For information about security policy server configuration on the access device, see
"Configuring AAA."
For installation and configuration about the security policy server, see CAMS EAD Security Policy
Component User Manual or IMC EAD Security Policy Help.
The ACL for resources in the quarantined area and that for restricted resources correspond to
isolation ACL and security ACL on the security policy server respectively.
You can modify the authorized ACLs on the access device. However, your changes take effect only
for portal users logging on after the modification.
For portal authentication to operate correctly, make sure the device name is no more than 16
characters.
Specifying the portal server
Specifying the local portal server for Layer 2 portal
authentication
The following matrix shows the feature and hardware compatibility:
Hardware Feature compatibility
MSR900 No
MSR93X No
MSR20-1X No
MSR20 No
MSR30
Supported only on MIM-FSW modules, MSR30-11E,
and MSR30-11F
MSR50 No
MSR1000 No

Table of Contents

Other manuals for HPE FlexNetwork MSR Series

Preview: Configuration Guide
Configuration Guide861 pages
Preview: Comware 7 Layer 3 - Ip Services Configuration Guides
Comware 7 Layer 3 - Ip Services Configuration Guides554 pages
Preview: Guide
Guide213 pages
Preview: Command Reference
Command Reference120 pages
Preview: Comware 5 Layer 2 - Wan Access Configuration Guide
Comware 5 Layer 2 - Wan Access Configuration Guide420 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the HPE FlexNetwork MSR Series and is the answer not in the manual?

HPE FlexNetwork MSR Series Specifications

General IconGeneral
BrandHPE
ModelFlexNetwork MSR Series
CategoryNetwork Router
LanguageEnglish

Related product manuals