HP VPN Firewall Appliances Access Control Configuration Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

151

152

153

154

155

156

157

158

159

160

153

• To use the local portal server of the access device, specify the IP address of a Layer 3 interface on

the device as the portal server's IP address. The specified interface must be reachable to the client.

Follow these guidelines when you specify a portal server for Layer 3 authentication:

• For local portal server configuration, the keywords key, port, and url are usually not required and,

if configured, do not take effect.

• To make sure the device can send packets to the portal server in an MPLS VPN, specify the VPN

instance to which the portal server belongs when specifying the portal server on the device.

To specify an IPv4 portal server for Layer 3 authentication:

Ste

Command

Remarks

1. Enter system view.

system-view N/A

2. Specify a portal

server and configure

related parameters.

portal server server-name ip ipv4-address

[ key [ cipher | simple ] key-string | port

port-id | url url-string | vpn-instance

vpn-instance-name ] *

By default, no IPv4 portal server is

specified.

You can specify up to four portal

servers on the access device.

NOTE:

• The specified parameters of a portal server can be modified or deleted only if the portal server is not

referenced on any interface.

• When a local portal server is used, the re-DHCP portal authentication mode (redhcp) can be confi

ured

but, if configured, does not take effect.

Configuring the local portal server

The following matrix shows the feature and hardware compatibility:

Hardware Com

atibilit

F1000-A-EI/F1000-S-EI Yes

F1000-E No

F5000 No

F5000-S/F5000-C No

VPN firewall modules No

20-Gbps VPN firewall modules No

Configuring a local portal server is required only for local portal authentication. During local portal

authentication, the local portal server pushes authentication pages to users. You can define the

authentication pages for users. Otherwise, the default authentication pages will be used during the

authentication process.

Customizing authentication pages

Customized authentication pages exist in the form of HTML files. You can compress them and then save

them in the storage medium of the access device.