3Com Switch 7750 Configuration Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 8116fl Redundant Switch Fabric Module

401

402

403

404

405

406

407

408

409

410

Configuration Example 405

Configure the number of times that a switch resends packets to the RADIUS

server to be 5. Configure the switch to send real-time counting packets to the

RADIUS server every 15 minutes with the domain names removed from the

user name beforehand.

■ The user name and password for local 802.1x authentication are “localuser”

and “localpass” (in plain text) respectively. The idle disconnecting function is

enabled.

Network diagram

Figure 98 Network diagram for AAA configuration with 802.1x and RADIUS enabled

Configuration procedure

Following configuration covers the major AAA/RADIUS configuration commands.

You can refer to “AAA Configuration” on page 518 and “RADIUS Configuration”

on page 525 for information about these commands. Configuration on the client

and the RADIUS servers is omitted.

# Enable 802.1x globally.

<SW7750> system-view

System View: return to User View with Ctrl+Z.

[SW7750] dot1x

# Enable 802.1x for Ethernet2/0/1 port.

[SW7750] dot1x interface Ethernet 2/0/1

# Set the access control method to be MAC-address-based (can be omitted as

MAC-address-based is the default configuration).

[SW7750] dot1x port-method macbased interface Ethernet 2/0/1

# Create a RADIUS scheme named “radius1” and enter RADIUS scheme view.

[SW7750] radius scheme radius1

# Assign IP addresses to the primary authentication and accounting RADIUS

servers.

[SW7750-radius-radius1] primary authentication 10.1.1.1

[SW7750-radius-radius1] primary accounting 10.1.1.2

Internet

Switch

Authenticator

Supplicant

Eth2 /0/1

1.1.1.1/24

Authentication servers

(RADIUS server cluster)

10.1.1.1

10.1.1.2