Example, Uam and access device cooperation – H3C Technologies H3C Intelligent Management Center User Manual

11

Figure 8 Network diagram of roaming authentication

Example

In a roaming authentication scenario:

•

Each endpoint user has a local UAM server, which is the server that saves the user's information.

•

Each endpoint user also has a roaming UAM server, which is the server through which the user is

connected to the network.

Assume that UAM 2 is the local UAM server of a user, and UAM 1 is the roaming UAM server of the user.

1.

After UAM 1 receives an authentication request from the user, UAM 1 forwards the request to
UAM 2 through the RADIUS protocol. UAM 2 authenticates the user identity.

2.

If the user is valid, UAM 2 returns the authentication success message and the access control
policies for the user to UAM 1. UAM 1 informs the access device to permit network access and

control network access according to the policies.

UAM and access device cooperation

An access device forwards packets between endpoint users and UAM. It controls user network access

according to the policies assigned by UAM.