14 configuring portal authentication, Configuring uam as the portal server, Configuring the portal server – H3C Technologies H3C Intelligent Management Center User Manual

309

14 Configuring portal authentication

Portal authentication provides authentication and authorization for users based on webpages. UAM

offers extended portal authentication based on single webpage, iNode DC, and iNode PC client, and

displays different login pages according to port groups, SSIDs, and endpoint operating systems.
After you configure portal functions in UAM, portal authentication works without affecting other

authentication functions, such as 802.1X authentication.

Configuring UAM as the portal server

Configure UAM as the portal server to receive and process portal authentication packets from users.

Configuring the portal server

1.

Click the User tab.

2.

Select User Access Policy > Portal Service > Server from the navigation tree.

3.

Configure the basic information:

{

Log Level—Select a log level for UAM to record from the list. Valid log levels include Debugging,
Info, Warning, Error, and Fatal, in the ascending order of severity.

−

If you select Fatal, UAM records logs of the fatal level only.

−

If you select Error, UAM records logs of fatal and error levels.

−

If you select Warning, UAM records logs of fatal, error, and warning levels.

−

If you select Info, UAM records logs of fatal, error, warning, and information levels.

−

If you select Debugging, UAM records logs of all levels, including log output and
debugging information. The debugging option would greatly consume system resources,

and is not recommended for general use. The default log level is Info.

4.

Configure the portal server:

{

Request Timeout—Enter the timeout time of the request sent by the portal server to a portal
device.

{

Server Heartbeat Interval—Enter the interval at which the portal server sends a server heartbeat
packet to the portal device.

−

The portal server sends a server heartbeat packet to the portal device at certain intervals

(specified by the Server Heartbeat Interval parameter). If receiving no server heartbeat
packet within an interval, the portal device considers the portal server failed and changes

the authentication mode to the fail-open mode. In the fail-open mode, the portal device

allows all users to access the Internet without authentication.

−

If the portal device receives a server heartbeat packet in the fail-open mode, the device
considers that the portal server recovers and restores to the authentication mode.

This function is effective only when it is enabled on both the portal server and the portal device.

To enable server heartbeat on the portal server, select Yes for Support Server Heartbeat on the
page for adding or modifying a portal device in UAM and configure server heartbeat at