Manualshelf

Management and Configuration Guide (Includes ACM xl) 2005-12

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
71727374757677787980
4-16 ProCurve Secure Access 700wl Series Management and Configuration Guide
Configuring Rights
The fields on this page are as follows:
To create a new user, do the following:
Step 1. Enter the identifying information about this user as defined in Table 4-2 above.
For users you want to authenticate using the built-in database, enter a username and password.
These will be used to match against the username and password the user enters into the 700wl
Series system’s logon page.
If you want to bypass authentication, enter a MAC address instead of a username. In this case, as
soon as the client connects to the system its MAC address is recognized as matching the MAC
address in the built-in database. Assuming the MAC address has been assigned to an Identity
Profile, that client will immediately get the rights defined by the Access Policy associated with the
client’s matching Identity Profile and Connection Profile.
Note:
If you use wildcard MAC addresses, you must take care to ensure that the MAC address
range you define does not include the MAC addresses of clients that you want to authenticate
(i.e. to logon using a username and password). If a client’s MAC address is recognized as
matching within the MAC address range, that client will bypass the authentication process and
Table 4-2. New User Fields
Field Description
Name A descriptive name that identifies the user in the 700wl Series system’s
Administrative Interface. This is the name that appears in Client Status display,
among others. It can be the user’s full name or any other meaningful name. This
name may have up to 32 characters. Any 7-bit characters are allowed.
Username/MAC Address The user’s username (logon ID) or MAC address. A user may be identified by one
or the other, not both.
A username may have up to 50 characters. Any 7-bit characters are allowed.
A MAC address may be entered with colons (:) or dashes (-) separating the tuples,
or without any separation. Thus, 00:01:a2:b3:4c:d5, 00-01-a2-b3-4c-d5,
and 0001a2b34cd5 are all valid formats for a MAC address.
You can also use the wildcard character “*” (asterisk) as the last character to create
a wildcard MAC address. The asterisk can replace any number of digits or tuples
(including all), but must always be the last character in the address. For example,
the following are valid wildcard MAC addresses:
00:05:A3:16:00:*
00:05:A3:16:0*
00:05:A3:*
0005A3*
*
The wildcard character cannot be used in the middle of the string:
00:05:A3:*:00:02 is not a valid wildcard MAC address.
MAC Address User Check this box to indicate that the contents of the previous field is a MAC address.
You can use a MAC address rather than username to enable a client to get access
rights without having to log in and be authenticated.
Password The (optional) password associated with the user’s logon name. This does not
apply if a MAC address is provided rather than a username. The password may be
up to 255 characters in length.
Confirm Password The same password, entered a second time as a confirmation.