Manualshelf

R3102-R3103-HP 6600/HSR6600 Routers Security Configuration Guide

ManualsBrandsHP ManualsNetwork HardwareHP HSR6602-G Router
121122123124125126127128129130
110
The output shows that you can access that segment before passing 802.1X authentication. If you use a
web browser to access any external website beyond the free IP segments, you are redirected to the web
server, which provides the 802.1X client software download service. Enter the external website address
in dotted decimal notation, for example, 3.3.3.3 or http://3.3.3.3, in the address bar.
EAD fast deployment configuration example (2)
Network requirements
As shown in Figure 40, the hosts on the intranet 192.168.1.0/24 are attached to port GigabitEthernet
3/0/1 of the network Router, and they use DHCP to obtain IP addresses.
Deploy EAD solution for the intranet so that all hosts must pass 802.1X authentication to access the
network.
To allow all intranet users to install and update 802.1X client program from a web server, configure the
following:
Allow unauthenticated users to access the segment of 192.168.2.0/24.
Redirect unauthenticated users to a preconfigured web page when the users use a web browser to
access any external network except 192.168.2.0/24. The web page allows users to download the
802.1X client program.
Allow authenticated 802.1X users to access the network.
Figure 41 Network diagram
In addition to the configuration on the Router, complete the following tasks:
Configure the web server so that users can log in to the web page to download 802.1X clients.
Configure the authentication server to provide authentication, authorization, and accounting
services.