Manualshelf

R3303-HP 6600/HSR6600 Routers Security Configuration Guide

ManualsBrandsHP ManualsNetwork HardwareHP HSR6602-G Router
141142143144145146147148149150
130
For information about AAA implementation across VPNs, see "Configuring AAA."
Portal configuration task list
To configure Layer 3 portal authentication:
Task Remarks
Specifying a portal server for Layer 3 portal authentication Required.
Enabling Layer 3 portal authentication Required.
Controlling access of portal
users
Configuring a portal-free rule
Optional.
Configuring an authentication source subnet
Configuring an authentication destination subnet
Setting the maximum number of online portal users
Specifying an authentication domain for portal users
Configuring RADIUS related
attributesConfiguring RADIUS
related
Specifying the NAS ID value carried in a RADIUS request
Optional.
Specifying NAS-Port-Type for an
interfaceSpecifying NAS-Port-Type for an
Specifying the NAS-Port-ID for an
interfaceSpecifying the NAS-Port-ID for an
Specifying a NAS ID profile for an interface
Specifying a device ID for the access device Optional.
Specifying a source IP address for outgoing portal packets Optional.
Configuring portal stateful failover Optional.
Specifying an autoredirection URL for authenticated portal users Optional.
Configuring portal detection
functionsConfiguring portal
detection
Configuring online Layer 3 portal user detection
Optional.
Configuring the portal server detection function
Configuring portal user information
synchronizationConfiguring portal user
informa
tion
Logging off portal usersLogging off portal Optional.
Configuration prerequisites
Although the portal feature provides a solution for user identity authentication and security check, the
portal feature cannot implement this solution by itself. RADIUS authentication must be configured on the
access device to cooperate with the portal feature to complete user authentication.
The prerequisites for portal authentication configuration are as follows:
The portal server and the RADIUS server have been installed and configured properly. Local portal
authentication requires no independent portal server be installed.