Installation guide

ManualsBrandsProCurve ManualsMusical equipment800

311

312

313

314

315

316

317

318

319

320

802.1X Quarantine Method

Setting Up the 802.1X Components

11-29

authenticate. For each posture received, a different RADIUS response

to the switch can be configured using RADIUS attributes. This

response determines into what VLAN the endpoint is placed.

Healthy – The endpoint passed all tests or no failed tests were

configured to quarantine.

Checkup – The endpoint failed a test and the action is configured to

grant temporary access.

Quarantined – The endpoint failed a test and the action is configured

to quarantine.

Unknown – The endpoint has not been tested.

Infected – The endpoint failed the Worms, Virus, and Trojans test.

To configure the response, edit the SAIASConnector.ini file. The

various settings in the file are listed as follows:

--------------------------------------------------------------------------------

------

;

; TO DO - Replace <NAS IP> with the IP address of your 802.1X enabled switch

;

[SAIASConnector-<NAS IP>]

;

; TO DO - Replace <SERVER IP> with the IP address of your NAC server

;

[Global]

NASList=192.168.200.135

ServerUrl=https://<SERVER IP>:89/servlet/AccessControlServlet

ServerUrl.1=https://<SERVER IP.1>:89/servlet/AccessControlServlet

ServerUrl.2=https://<SERVER IP.2>:89/servlet/AccessControlServlet

ServerUrl.3=https://<SERVER IP.3>:89/servlet/AccessControlServlet

ServerUrl.4=https://<SERVER IP.4>:89/servlet/AccessControlServlet

ServerUrl.5=https://<SERVER IP.5>:89/servlet/AccessControlServlet

DebugLevel=4

Debug=on

Username=nacuser

Password=nacpwd

;

; If the NAC 800 server cannot be contacted reply to RADIUS with the following

posture

; 0=healthy, 10=checkup, 20=quarantined, 30=infected, 100=unknown

;

DefaultPosture=0

;

; Use the following timeouts (in milliseconds) for contacting the NAC 800

server.