EasyManuals Logo

Huawei Quidway S3000-EI Series User Manual

Huawei Quidway S3000-EI Series
383 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #223 background imageLoading...
Page #223 background image
Operation Manual - Security
Quidway S3000-EI Series Ethernet Switches
Chapter 2 AAA and RADIUS Protocol
Configuration
Huawei Technologies Proprietary
2-2
After RADIUS system is started, if the user wants to have right to access other network
or consume some network resources through connection to NAS (dial-in access server
vironment),
server.
RADIUS server has a u information of user authentication
and network service access. Whe request from NAS, RADIUS server
performs AAA through user database query and update and returns the configuration
NAS controls supplicant and
gulates how to transmit
configuration and accounting information between NAS and RADIUS.
US exchange the information with UDP packets. During the interaction,
both sides encrypt the packets with keys before uploading user configuration
II ation
erver to
perform user authentication. The operation process is as follows: First, the user send
u rypted password is included in the
ill receive from RADIUS server
hat the
essage indicates that the user
2.1.3 Implementi
IUS. In other words, the AAA/RADIUS concerning client-end is
implemented on Quidway Series Ethernet Switches. The figure below illustrates the
including Quidway Series Ethernet Switches.
in PSTN environment or Ethernet switch with access function in Ethernet en
NAS, namely RADIUS client end, will transmit user AAA request to the RADIUS
ser database recording all the
n receiving user’s
information and accounting data to NAS. Here,
corresponding connections, while RADIUS protocol re
NAS and RADI
information (like password etc.) to avoid being intercepted or stolen.
. RADIUS oper
RADIUS server generally uses proxy function of the devices like access s
req est message (the client username and enc
message ) to RADIUS server. Second, the user w
various kinds of response messages in which the ACCEPT message indicates t
user has passed the authentication, and the REJECT m
has not passed the authentication and needs to input username and password again,
otherwise he will be rejected to access.
ng AAA/RADIUS on Ethernet Switch
By now, we understand that in the above-mentioned AAA/RADIUS framework,
Quidway Series Ethernet Switches, serving as the user access device or NAS, is the
client end of RAD
RADIUS authentication network

Table of Contents

Other manuals for Huawei Quidway S3000-EI Series

Preview: Installation Manual
Installation Manual74 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Huawei Quidway S3000-EI Series and is the answer not in the manual?

Huawei Quidway S3000-EI Series Specifications

General IconGeneral
BrandHuawei
ModelQuidway S3000-EI Series
CategorySwitch
LanguageEnglish

Related product manuals