Operation Manual - Security
Quidway S3500 Series Ethernet Switches Chapter 3 AAA and RADIUS Protocol Configuration
Huawei Technologies Proprietary
3-8
VLAN. When the port is in MAC address-based mode, each port can only connect a
single user.
Currently the ethernet switches support RADIUS server delivers the integer type and
string type VLAN ID.
z Integer VLAN ID: The switch adds the port into the VLAN based on the integer ID
delivered from the server. If the VLAN does not exist, it first creates a VLAN and
then adds the port into the new VLAN.
z String ID: The switch compares the string ID delivered from the server with the
VLAN names existing on the switch. If a matching entry is found, the switch adds
the port into the corresponding VLAN. Otherwise, the delivery fails and the user
cannot pass the authentication.
The dynamic VLAN with RADIUS server configuration includes:
z Configuring VLAN delivery mode
z Configuring name of the delivered VLAN
I. Configuring VLAN delivery mode
Perform the following configuration in ISP domain view.
Table 3-7 Configuring VLAN delivery mode
Operation Command
Configure VLAN delivery mode as integer
vlan-assignment-mode integer
Configure VLAN delivery mode as string
vlan-assignment-mode string
By default, the integer mode is selected, that is, the switch supports the RADIUS server
delivering the integer VLAN ID.
II. Configuring name of the delivered VLAN
Perform the following configuration in VLAN view.
Table 3-8 Configuring name of the delivered VLAN
Operation Command
Configure name of the delivered VLAN
name string
Remove the configured VLAN name
undo name
3.3 Configuring RADIUS Protocol
For the Quidway Series Switches, the RADIUS protocol is configured on the per
RADIUS scheme basis. In real networking environment, a RADIUS scheme can be an
independent RADIUS server or a set of primary/second RADIUS servers with the same
To Next Page
Loading...
Need help?
General
