Initiating 802.1x authentication, 1x client as the initiator, Access device as the initiator – H3C Technologies H3C S12500-X Series Switches User Manual

Page 93: Configuration prerequisites, Configuration task list, Enabling mac authentication

Advertising
background image

81

For more information about configuring local authentication and RADIUS authentication, see

"

778H

Configuring AAA

."

53B

Configuration prerequisites

Before you configure MAC authentication, complete the following tasks:

1.

Configure an ISP domain and specify an AAA method. For more information, see "

779H

Configuring

AAA

."

{

For local authentication, you must also create local user accounts (including usernames and
passwords), and specify the lan-access service for local users.

{

For RADIUS authentication, make sure the device and the RADIUS server can reach each other,
and create user accounts on the RADIUS server. If you are using MAC-based accounts, make
sure the username and password for each account are the same as the MAC address of each

MAC authentication user.

2.

Make sure the port security feature is disabled. For more information about port security, see
"

780H

Configuring port security

."

54B

Configuration task list

Tasks at a glance

(Required.)

781H

Enabling MAC authentication

(Optional.)

782H

Specifying a MAC authentication domain

(Optional.)

783H

Configuring the user account format

(Optional.)

784H

Configuring MAC authentication timers

(Optional.)

785H

Setting the maximum number of concurrent MAC authentication users on a port

(Optional.)

786H

Configuring MAC authentication delay

55B

Enabling MAC authentication

You cannot enable MAC authentication on a port already in a link aggregation group or a service

loopback group, or add a MAC authentication enabled port to a link aggregation group or a service

loopback group.
For MAC authentication to take effect on a port, you must enable it globally and on the port.
To enable MAC authentication:

Step Command

Remarks

1.

Enter system view.

system-view

N/A

2.

Enable MAC authentication
globally.

mac-authentication

By default, MAC authentication is
disabled globally.

3.

Enter interface view.

interface interface-type
interface-number

N/A

Advertising
This manual is related to the following products:

H3C S5560 Series Switches, H3C WX6000 Series Access Controllers, H3C WX5000 Series Access Controllers, H3C WX3000 Series Unified Switches, H3C LSWM1WCM10 Access Controller Module, H3C LSWM1WCM20 Access Controller Module, H3C LSQM1WCMB0 Access Controller Module, H3C LSRM1WCM2A1 Access Controller Module, H3C LSBM1WCM2A0 Access Controller Module, H3C S9800 Series Switches, H3C S5130 Series Switches, H3C S5120 Series Switches

Popular Brands
Popular manuals