Dell PowerConnect W Clearpass 100 Software External Authentication Servers Sof
Dell PowerConnect W Clearpass 100 Software Manual
View all Dell PowerConnect W Clearpass 100 Software manuals
Add to My Manuals
Save this manual to your list of manuals |
Dell PowerConnect W Clearpass 100 Software manual content summary:
- Dell PowerConnect W Clearpass 100 Software | External Authentication Servers Sof - Page 1
Amigopod External Authentication Servers Software Walkthrough - Dell PowerConnect W Clearpass 100 Software | External Authentication Servers Sof - Page 2
Source Code Certain Aruba products include Open Source software code developed by third parties, including software code subject to the GNU General Public parts/labor. For more information, refer to the ARUBACARE SERVICE AND SUPPORT TERMS AND CONDITIONS. Altering this device (such as painting - Dell PowerConnect W Clearpass 100 Software | External Authentication Servers Sof - Page 3
Table of Contents External Authentication Servers ...4 About RADIUS Authentication Servers ...4 Types of authentication server...4 Authorization for external authentication servers 4 Configuring RADIUS Authentication ...5 Joining an Active Directory domain ...5 Authenticating Active Directory users - Dell PowerConnect W Clearpass 100 Software | External Authentication Servers Sof - Page 4
RADIUS server supports multiple external authentication servers, allowing user accounts from account) Each type of authentication server has different methods for determining user authorization: • No authorization - Authenticate only may be used to provide a basic user authentication service - Dell PowerConnect W Clearpass 100 Software | External Authentication Servers Sof - Page 5
RADIUS server's EAP & 802.1X functionality is now located under the RADIUS > Authentication menu. In earlier software releases, this menu option was located directly below the RADIUS Services heading. Joining an Active Directory domain To perform certain types of user authentication, such as using - Dell PowerConnect W Clearpass 100 Software | External Authentication Servers Sof - Page 6
Selecting the Join Domain command starts a two-step process to join the domain: The process has built-in troubleshooting assistance, which can help with much of the necessary configuration: When the server's DNS and network settings are correctly configured, all the necessary domainrelated - Dell PowerConnect W Clearpass 100 Software | External Authentication Servers Sof - Page 7
Joining the server to the Active Directory domain then requires entering the username and password for a domain administrator account. Once the domain has been joined, the status is available on the Active Directory Services page. Amigopod |Technical Note External Authentication Servers |7 - Dell PowerConnect W Clearpass 100 Software | External Authentication Servers Sof - Page 8
Authenticating Active Directory users As indicated in the domain summary, the RADIUS server cannot authenticate user accounts in Active Directory until a domain username and password is provided. Clicking the Configure Authentication command link displays the Edit Authentication Server form for - Dell PowerConnect W Clearpass 100 Software | External Authentication Servers Sof - Page 9
directory. The credentials provided do not need to be those of a domain administrator; a restricted user account may be provided here. Only user lookup operations are performed with this user account. Click the Save Changes button to store the credentials for the authentication server. Leaving an - Dell PowerConnect W Clearpass 100 Software | External Authentication Servers Sof - Page 10
to perform this operation. Managing Authentication Servers The RADIUS Authentication Servers page lists all available sources for use with authentication: The Test Authentication command may be used to check the connection to an authentication server, or verify the authorization rules that have been - Dell PowerConnect W Clearpass 100 Software | External Authentication Servers Sof - Page 11
to demonstrate the difference between the various authorization methods. To use the diagnostic, navigate to RADIUS > Server Control and click the Test RADIUS Authentication command link. Enter the username and password for a user that is externally authenticated. Click the Run button to perform - Dell PowerConnect W Clearpass 100 Software | External Authentication Servers Sof - Page 12
use any of the available properties of the user account, as well as taking into account other factors such as the time of day, previous specific RADIUS role ID. To determine the appropriate role ID, navigate to RADIUS Services > User Roles and check the ID column for the appropriate role. For example - Dell PowerConnect W Clearpass 100 Software | External Authentication Servers Sof - Page 13
NOTE NOTE • Select the authorization method Use PHP code to assign a user role (Advanced) and use the following code: if (in_array('CN=Domain Admins,CN=Users,DC=amigopod,DC=local', $user['memberof'])) return 4; if (in_array('CN=Users,CN=Builtin,DC=amigopod,DC=local', $user['memberof'])) return 5;
Amigopod
External Authentication Servers
Software Walkthrough