3Com Switch 7750 Configuration Guide Guide
Configuration Example 477
being the primary authentication and the secondary counting server, and the
latter the secondary authentication and the primary counting server. Configure
the interaction password between the switch and the authenticating RADIUS
server to be "name", and "money" for interaction between the switch and the
counting RADIUS. Configure the waiting period for the switch to resend
packets to the RADIUS server to be 5 seconds, that is, if after 5 seconds the
RADIUS still has not sent any responses back, the switch will resend packets.
Configure the number of times that a switch resends packets to the RADIUS
server to be 5. Configure the switch to send real-time counting packets to the
RADIUS server every 15 minutes with the domain names removed from the
user name beforehand.
■ The user name and password for local 802.1x authentication are "localuser"
and "localpass" (in plain text) respectively. The idle disconnecting function is
enabled.
Network diagram
Figure 122 Network diagram for AAA configuration with 802.1x and RADIUS enabled
Configuration procedure
n
Following configuration covers the major AAA/RADIUS configuration commands.
You can refer to AAA&RADIUS&HWTACACS&EAD Operation Manual for the
information about these commands. Configuration on the client and the RADIUS
servers is omitted..
# Enable 802.1x globally.
<SW7750> system-view
System View: return to User View with Ctrl+Z.
[SW7750] dot1x
# Enable 802.1x for Ethernet1/0/1 port.
[SW7750] dot1x interface Ethernet 1/0/1
# Set the access control method to be MAC-address-based ( can be omitted as
MAC-address-based is the default configuration).
Supplicant
Authentication servers
(RADIUS Server Cluster
IP Address: 10.11.1.1
10.11.1.2)
Internet
Authenticator
Switch
Supplicant
Authentication servers
(RADIUS Server Cluster
IP Address: 10.11.1.1
10.11.1.2)
Internet
Authenticator
Switch