Local client authentication configuration example, Network requirements, Configuring the ac – H3C Technologies H3C WX3000E Series Wireless Switches User Manual
Page 442
421
Local client authentication configuration example
Network requirements
Configure local client authentication on the AC so the AP performs 802.1X authentication on clients
through the RADIUS server whenever the AC-AP connection fails or not.
Deploy the RADIUS server at the AP side so associated 802.1X clients are not logged off when the
connection between the branch and headquarters fails.
Figure 439 Network diagram
Adding commands to the configuration file of the AP
port-security enable
dot1x authentication-method eap
radius scheme rad
primary authentication 192.168.100.254
primary accounting 192.168.100.254
key authentication simple 123456
key accounting simple 123456
user-name-format without-domain
domain cams
authentication default radius-scheme rad
authorization default radius-scheme rad
accounting default radius-scheme rad
Then save the file with the name map.cfg, and upload it to the storage media on the AC.
Configuring the AC
1.
Configure the AP:
a.
Select AP > AP Setup from the navigation tree.
b.
Click Add.
c.
On the page that appears, set the AP name to ap, select the AP model WA3628i-AGN, select
Manual from the Serial ID list, enter the serial ID of the AP, and click Apply.