Enterasys 802.1Q Spécifications Page 13
- Page / 36
- Table des matières
- MARQUE LIVRES
Noté. / 5. Basé sur avis des utilisateurs
Authentication Overview
April 15, 2011 Page 13 of 36
authorizationisenabledgloballyandontheauthenticatinguser’sport,theVLANspecifiedby
thetunnelattributesisappliedtotheauthenticatinguser.
IfVLANauthorizationisnotenabled,theVLANspecifiedbythepolicyprofileisapplied.See
“RFC3580”onpage 10forinformationaboutVLANauthorization.
•Ifthe
Filter‐IDattribut esarepresentbutthetunnelattributesarenotpresent,thepolicy
profilespecifiedbytheFilter‐IDisapplied,alongwiththeVLANspecifiedbythepolicy
profile.
•IfthetunnelattributesarepresentbuttheFilter‐IDattributesarenotpresent,andifVLAN
authorizationisenabled
globallyandontheauthenticatinguser’sport,thentheswitchwill
checktheVLAN‐to‐policymappingtable(configuredwiththesetpolicymaptable
command):
–IfanentrymappingthereceivedVLANIDtoapolicyprofileisfound,thenthatpolicy
profile,alongwiththeVLANspecifiedbythepolicy
profile,willbeappliedtothe
authenticatinguser.
–Ifnomatchingmappingtableentryisfound,theVLANspecifiedbythetunnelattributes
willbeappliedtotheauthenticatinguser.
–IftheVLAN‐to‐policymappingtableisinvalid,thenthe
etsysPolicyRFC3580MapInvalidMappingMIBisincrementedandtheVLANspecifiedby
thetunnel
attributeswillbeappliedtotheauthenticatinguser.
IfVLANauthorizationisnotenabled,thetunnelattributesareignored.
When Policy Maptable Response is “Profile”
WhentheswitchisconfiguredtouseonlyFilter‐IDattributes,bysettingthesetpolicymaptable
commandresponseparametertopolicy:
•IftheFilter‐IDattributesarepresent,thespecifiedpolicyprofilewillbeappliedtothe
authenticatinguser.IfnoFilter‐IDattributesarepresent,thedefaultpolicy(if
itexists)willbe
applied.
•Ifthetunnelattributesarepresent,theyareignored.NoVLAN‐to‐policymappingwilloccur.
When Policy Maptable Response is “Tunnel”
Whentheswitchisconfiguredtouseonlytunnelattributes,bysettingthesetpolicymaptable
commandresponseparametertotunnel,andifVLANauthorizationisenabledbothgloballyand
ontheauthenticatinguser’sport:
•Ifthetunnelattributesarepresent,the sp ecifiedVLANwillbeappliedtotheauthenticating
user.
VLAN‐to‐policymappingcanoccuronamodularswitchplatform;VLAN‐to‐policy
mappingwillnotoccuronastackablefixedswitchorstandalonefixedswitchplatform.
•Ifthetunnelattributesarenotpresent,thedefaultpolicyVLANwillbeapplied;ifthedefault
policyVLANisnotconfigured,the
portVLANwillbeapplied.
•IftheFilter‐IDattributesarepresent,theyareignored.
IfVLANauthorizationisnotenabled,theuserwillbeallowedontotheportwiththedefault
policy,ifitexists.Ifnodefaultpolicyexists,theportVLANwillbeapplied.
- What is User Authentication? 1
- IEEE 802.1x Using EAP 3
- Port Web Authentication (PWA) 3
- Convergence End Point (CEP) 4
- Multi-User Authentication 5
- Port ge.1.5 6
- MAU LogicMAU Logic 7
- MAU Logic 8
- How RADIUS Data Is Used 9
- The RADIUS Filter-ID 9
- RFC 3580 10
- Authentication Overview 11
- April 15, 2011 Page 11 of 36 11
- Policy Maptable Response 12
- April 15, 2011 Page 13 of 36 13
- Configuring Authentication 14
- April 15, 2011 Page 15 of 36 15
- Configuring IEEE 802.1x 16
- April 15, 2011 Page 17 of 36 17
- April 15, 2011 Page 18 of 36 18
- April 15, 2011 Page 19 of 36 19
- April 15, 2011 Page 20 of 36 20
- April 15, 2011 Page 21 of 36 21
- April 15, 2011 Page 22 of 36 22
- April 15, 2011 Page 23 of 36 23
- April 15, 2011 Page 24 of 36 24
- April 15, 2011 Page 25 of 36 25
- Configuring RADIUS 26
- Configuring RADIUS Accounting 27
- April 15, 2011 Page 28 of 36 28
- April 15, 2011 Page 29 of 36 29
- April 15, 2011 Page 30 of 36 30
- Enabling RADIUS On the Switch 31
- April 15, 2011 Page 32 of 36 32
- April 15, 2011 Page 33 of 36 33
- Terms and Definitions 34
- April 15, 2011 Page 35 of 36 35
- Revision History 36
Produits connexes et manuels pour Mise en réseau Enterasys 802.1Q
(17 pages)
(70 pages)© 2020, manymanuals.fr. Tous droits réservés | 0.151 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Commentaires sur ces manuels