R0106-HP MSR Router Series Security Configuration Guide(V7)
82
NOTE:
A
fter you install the SmartOn client software, add two values QX_ID and QX_PASSWORD to the
W
indows re
g
istry key [HKEY_LOCAL_MACHINE\SOFTWARE\Soliton Systems K.K.\SmartOn
Client\Clients\1XGate]. Specify the switch ID and password for the QX_ID and QX_PASSWORD,
respectively. The switch ID and password must be the same as the switch ID and password confi
g
ured on
the device.
Configuration prerequisites
• Configure an ISP domain and AAA scheme (local or RADIUS authentication) for 802.1X users.
• If RADIUS authentication is used, create user accounts on the RADIUS server.
• If local authentication is used, create local user accounts on the access device and set the service
type to lan-access.
• If you want to use EAP relay when the RADIUS server does not support any EAP authentication
method or no RADIUS server is available, configure the EAP server function on your network access
device.
For more information about RADIUS client and local EAP authentication configuration, see "Configuring
AAA."
802.1X configuration task list
Tasks at a
g
lance
(Required.) Enabling 802.1X
(Required.) Enabling EAP relay or EAP termination
(Optional.) Setting the port authorization state
(Optional.) Specifying an access control method
(Optional.) Setting the maximum number of concurrent 802.1X users on a port
(Optional.) Setting the maximum number of authentication request attempts
(Optional.) Setting the 802.1X authentication timeout timers
(Optional.) Configuring the online user handshake function
(Optional.) Configuring the authentication trigger function
(Optional.) Specifying a mandatory authentication domain on a port
(Optional.) Configuring the quiet timer
(Optional.) Enabling the periodic online user reauthentication function
(Optional.) Configuring an 802.1X guest VLAN
(Optional.) Configuring an 802.1X Auth-Fail VLAN
(Optional.) Configuring an 802.1X critical VLAN
(Optional.) Specifying supported domain name delimiters
(Optional.) Configuring 802.1X SmartOn