D-Link DGS-3627G Product Manual - Page 506
RADIUS Tunnel Attribute
UPC - 790069293764
View all D-Link DGS-3627G manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 506 highlights
xStack® DGS-3600 Series Layer 3 Managed Gigabit Ethernet Switch If the user has configured the VLAN attribute of the RADIUS server (for example, VID 3) and the 802.1X, or MAC-based Access Control authentication is successful, the port will be added to VLAN 3. However, if the user does not configure the VLAN attribute and authenticates successfully, the port will be kept in its original VLAN. If the VLAN attribute configured on the RADIUS server does not exist, the port will not be assigned to the requested VLAN. To assign ACL by RADIUS Server, the proper parameters should be configured on the RADIUS Server. The table below shows the parameters for an ACL. The RADIUS ACL assignment is only used in MAC-based Access Control. The parameters of the Vendor-Specific Attribute are: RADIUS Tunnel Attribute Vendor-ID Vendor-Type Attribute-Specific Field Description Defines the vendor. Defines the attribute. Used to assign the ACL profile or rule. Value 171 (DLINK) 12 (for ACL profile) 13 (for ACL rule) ACL Command For example: ACL profile: create access_profile ethernet vlan 0xFFF profile_id 100; ACL rule: config access_profile profile_id 100 add access_id auto_assign ethernet vlan_id default port all deny; Usage Required Required Required If the user has configured the ACL attribute of the RADIUS server (for example, ACL profile: create access_profile ethernet vlan 0xFFF profile_id 100; ACL rule: config access_profile profile_id 100 add access_id auto_assign ethernet), and the MAC-based Access Cotntrol authentication is successful, the device will assign the ACL profiles and rules according to the RADIUS server. For more information about the ACL module, please refer to the Access Control List (ACL) chapter in the DGS-3600 Series CLI Reference Guide. 490