R3303-HP HSR6800 Routers Security Configuration Guide

ManualsBrandsHP ManualsNetwork HardwareHP HSR68xx Configure-to-Order Router Solution

Configuring online Layer 3 portal user detection ···························································································· 137

Configuring the portal server detection function ······························································································ 138

Configuring portal user information synchronization ······················································································ 139

Logging off portal users ··············································································································································· 140

Displaying and maintaining portal ···························································································································· 140

Portal configuration examples ···································································································································· 141

Configuring direct portal authentication ··········································································································· 141

Configuring re-DHCP portal authentication ······································································································ 146

Configuring cross-subnet portal authentication ································································································ 148

Configuring direct portal authentication with extended functions·································································· 150

Configuring re-DHCP portal authentication with extended functions ···························································· 152

Configuring cross-subnet portal authentication with extended functions ······················································· 154

Configuring portal server detection and portal user information synchronization ······································· 156

Cross-subnet portal authentication across VPNs ······························································································ 161

Troubleshooting portal ················································································································································· 163

Inconsistent keys on the access device and the portal server ········································································· 163

Incorrect server port number on the access device ·························································································· 163

Configuring port security ········································································································································ 165

Overview ······································································································································································· 165

Port security modes ············································································································································· 166

Working with guest VLAN and Auth-Fail VLAN ······························································································ 168

Configuration task list ·················································································································································· 168

Enabling port security ·················································································································································· 169

Setting port security's limit on the number of MAC addresses on a port······························································· 169

Setting the port security mode ···································································································································· 170

Configuration prerequisites ································································································································ 170

Configuration procedure ···································································································································· 170

Configuring port security features ······························································································································ 171

Configuring NTK ················································································································································· 171

Configuring intrusion protection ························································································································ 171

Enabling port security traps ································································································································ 172

Configuring secure MAC addresses ·························································································································· 172

Ignoring authorization information from the server ·································································································· 174

Displaying and maintaining port security ·················································································································· 175

Port security configuration examples ························································································································· 175

Configuring the autoLearn mode ······················································································································· 175

Configuring the userLoginWithOUI mode ········································································································ 177

Configuring the macAddressElseUserLoginSecure mode ················································································ 182

Troubleshooting port security ······································································································································ 185

Cannot set the port security mode ····················································································································· 185

Cannot configure secure MAC addresses ········································································································ 185

Cannot change port security mode when a user is online ·············································································· 186

Configuring a user profile ······································································································································ 187

User profile configuration task list ······························································································································ 187

Creating a user profile ················································································································································ 187

Performing configurations in user profile view ········································································································· 188

Enabling a user profile ················································································································································ 188

Displaying and maintaining user profile ··················································································································· 188