Manualshelf

User Manual

ManualsBrandsPLANET Technology ManualsLAN SwitchesLayer 3 24-Port 10G SFP+ + 4-Port 100G QSFP28 Managed Switch
919293949596979899100
99
Users Manual of XGS-6350-24X4C
online notification. If the notification is not received in the preset time, the switch considers that the user
abnormally logs off, notifies the AAA server to stop charging and withdraws the network access right
from the user.
The above steps may vary a little with configuration strategies and user’s operations. For example, if user
directly accesses the portal server of the switch before the authentication is approved, DNS-related
processes will not be enabled.
Figure 6-3 web authentication flow
6.3.1.2 Planning Web Authentication
1. Planning the authentication mode
Two authentication modes are provided to control user's access:
Username/password authentication mode: In this mode, the switch identifies the user through the username
and password, and notifies the AAA server to start charging according to username; user needs to enter the
username and password through the browser.
VLAN ID authentication mode: In this mode, the switch identifies the user through the VLAN ID the user
belongs to, and notifies the AAA server to start charging according to VLAN ID; user only requires to confirm
corresponding operations on the Web page before accessing the network.
client switch dhcp server DNS server AAA server
DHCP ACK
DNS REQUERY
DNS RESPONSE
http request
http response(ask user to login)
http request(login)
authentication request
authentication result
start accounting request
start accounting result
authentication result
http request(keepalive)
http response(keepalive response)
http request(logout) stop accounting request
http response(logout)