Manualshelf

F3726, F3211, F3174, R5135, R3816-HP Firewalls and UTM Devices Access Control Configuration Guide-6PW100

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
151152153154155156157158159160
148
Resource access restriction—Allows users passing identity authentication to access only network
resources in the quarantined area, such as the anti-virus server and the patch server. Only users
passing both identity authentication and security check can access restricted network resources.
194BPortal system components
A typical portal system comprises these basic components: authentication client, access device, portal
server, authentication/accounting server, and security policy server.
Figure 122 Portal system components
363BAuthentication client
An authentication client is an entity seeking access to network resources. It is typically an end-user
terminal such as a PC. A client can use a browser or portal client software for portal authentication. Client
security check is implemented through communications between the client and the security policy server.
To implement security check, the client must be the HP iNode client.
364BAccess device
Access devices control user access. An access device can be a switch or router that provides the
following functions:
Redirecting all HTTP requests from unauthenticated users to the portal server.
Interacting with the portal server, the security policy server, and the authentication/accounting
server for identity authentication, security check, and accounting.
Allowing users who have passed identity authentication and security check to access granted
Internet resources.
365BPortal server
A portal server listens to authentication requests from authentication clients and exchanges client
authentication information with the access device. It provides free portal services and pushes Web
authentication pages to users.
A portal server can be an entity independent of the access device or an entity embedded in the access
device. In this document, the term "portal server" refers to an independent portal server, and the term
"local portal server" refers to an embedded portal server.
Authentication/accounting
server
Security policy server
Portal server
Authentication client
Access device
Authentication client
Authentication client