HP 6125G HP 6125G & 6125G/XG Blade Switches Security Configuration Gui - Page 115
Basic configuration for MAC authentication, Configuring MAC authentication globally, Configuring MAC
View all HP 6125G manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 115 highlights
Task Specifying a MAC authentication domain Remarks Optional Basic configuration for MAC authentication • Create and configure an authentication domain, also called "an ISP domain." • For local authentication, create local user accounts, and specify the lan-access service for the accounts. • For RADIUS authentication, check that the device and the RADIUS server can reach each other, and create user accounts on the RADIUS server. If you are using MAC-based accounts, make sure that the username and password for each account is the same as the MAC address of the MAC authentication users. MAC authentication can take effect on a port only when it is enabled globally and on the port. Configuring MAC authentication globally Step 1. Enter system view. 2. Enable MAC authentication globally. Command system-view mac-authentication Remarks N/A Disabled by default. 3. Configure MAC authentication timers. mac-authentication timer { offline-detect offline-detect-value | quiet quiet-value | server-timeout server-timeout-value } Optional. By default, the offline detect timer is 300 seconds, the quiet timer is 60 seconds, and the server timeout timer is 100 seconds. mac-authentication user-name-format 4. Configure the properties of MAC authentication user accounts. { fixed [ account name ] [ password { cipher | simple } password ] | mac-address [ { with-hyphen | without-hyphen } [ lowercase | uppercase ] ] } Optional. By default, the username and password for a MAC authentication user account must be a MAC address in lower case without hyphens. NOTE: When global MAC authentication is enabled, the EAD fast deployment function cannot take effect. Configuring MAC authentication on a port Step 1. Enter system view. Command system-view Remarks N/A 105