HP 6125G HP 6125G & 6125G/XG Blade Switches Security Configuration Gui - Page 116
Specifying a MAC authentication domain, Displaying and maintaining MAC authentication
View all HP 6125G manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 116 highlights
Step 2. Enable MAC authentication. 3. Set the maximum number of concurrent MAC authentication users allowed on a port. Command • (Approach 1) In system view: mac-authentication interface interface-list • (Approach 2) In interface view: a. interface interface-type interface-number b. mac-authentication mac-authentication max-user user-number Remarks Disabled by default. Enable MAC authentication for ports in bulk in system view or an individual port in Ethernet interface view. Optional. By default, the maximum number of concurrent MAC authentication users is 2048. NOTE: You cannot add a MAC authentication enabled port in to a link aggregation group or service loopback group, or enable MAC authentication on a port already in a link aggregation group or service loopback group. Specifying a MAC authentication domain By default, MAC authentication users are in the system default authentication domain. To implement different access policies for users, you can specify authentication domains for MAC authentication users in the following ways: • Specify a global authentication domain in system view. This domain setting applies to all ports. • Specify an authentication domain for an individual port in Ethernet interface view. MAC authentication chooses an authentication domain for users on a port in this order: the interface-specific domain, the global domain, and the default domain. For more information about authentication domains, see "Configuring AAA." To specify an authentication domain for MAC authentication users: Step Command 1. Enter system view. system-view • (Approach 1) In system view: mac-authentication domain domain-name 2. Specify an authentication domain for MAC • (Approach 2) In interface view: authentication users. a. interface interface-type interface-number b. mac-authentication domain domain-name Remarks N/A Use either approach. By default, the system default authentication domain is used for MAC authentication users. Displaying and maintaining MAC authentication 106