Terminology, Terminology -9 – HP 2800 User Manual

Web and MAC Authentication for the Series 2600/2600-PWR and 2800 Switches

Terminology

Terminology

Authorized-Client VLAN:

Like the Unauthorized-Client VLAN, this is a

conventional, static, untagged, port-based VLAN previously configured on
the switch by the System Administrator. The intent in using this VLAN is
to provide authenticated clients with network access and services. When
the client connection terminates, the port drops its membership in this
VLAN.

Authentication Server:

The entity providing an authentication service to

the switch. In the case of a Series 5300XL switch running Web/MAC-
Authentication, this is a RADIUS server.

Authenticator:

In HP ProCurve switch applications, a device such as a Series

5300XL switch that requires a client or device to provide the proper
credentials (MAC address, or username and password) before being
allowed access to the network.

CHAP:

Challenge Handshake Authentication Protocol. Also known as

“CHAP-RADIUS”.

Client:

In this application, an end-node device such as a management station,

workstation, or mobile PC linked to the switch through a point-to-point
LAN link.

Redirect URL:

A System Administrator-specified web page presented to an

authorized client following Web Authentication. HP recommends speci­
fying this URL when configuring Web Authentication on a switch. Refer
to

aaa port-access web-based [e] < port-list > [redirect-url < url >] on page 3-21.

Static VLAN:

A VLAN that has been configured as “permanent” on the switch

by using the CLI

vlan < vid > command or the Menu interface.

Unauthorized-Client VLAN:

A conventional, static, untagged, port-based

VLAN previously configured on the switch by the System Administrator.
It is used to provide limited network access and services to clients who
are not authenticated.

3-9