H3C Technologies H3C S7500E Series Switches User Manual

9-17

# Set the 802.1X authentication method to CHAP. (This configuration is optional. By default, the

authentication method is CHAP for 802.1X.)

[Switch] dot1x authentication-method chap

3) Configure port security

# Enable port security.

[Switch] port-security enable

# Add five OUI values.

[Switch] port-security oui 1234-0100-1111 index 1

[Switch] port-security oui 1234-0200-1111 index 2

[Switch] port-security oui 1234-0300-1111 index 3

[Switch] port-security oui 1234-0400-1111 index 4

[Switch] port-security oui 1234-0500-1111 index 5

[Switch] interface gigabitethernet 2/0/1

# Set the port security mode to userLoginWithOUI.

[Switch-GigabitEthernet2/0/1] port-security port-mode userlogin-withoui

4) Verify the configuration

After completing the configurations, you can use the following command to view the configuration

information of the RADIUS scheme named radsun:

<Switch> display radius scheme radsun

SchemeName : radsun

Index : 1 Type : standard

Primary Auth Server:

IP: 192.168.1.2 Port: 1812 State: active

Primary Acct Server:

IP: 192.168.1.3 Port: 1813 State: active

Second Auth Server:

IP: 192.168.1.3 Port: 1812 State: active

Second Acct Server:

IP: 192.168.1.2 Port: 1813 State: active

Auth Server Encryption Key : name

Acct Server Encryption Key : money

Interval for timeout(second) : 5

Retransmission times for timeout : 5

Interval for realtime accounting(minute) : 15

Retransmission times of realtime-accounting packet : 5

Retransmission times of stop-accounting packet : 500

Quiet-interval(min) : 5

Username format : without-domain

Data flow unit : Byte

Packet unit : one

Use the following command to view the configuration information of the ISP domain named sun:

<Switch> display domain sun

Domain : sun

State : Active

Access-limit : 30

Accounting method : Required

Default authentication scheme : radius:radsun