Dell PowerConnect W Clearpass 100 Software HP ProCurve MSM Integration Guide - Page 21
VSC Global Configuration, VSC Access Control Configuration
View all Dell PowerConnect W Clearpass 100 Software manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 21 highlights
VSC Global Configuration Under the Global Configuration the name of the VSC can be changed to suit your deployment. In our case we are going to leave it as the default of HP ProCurve Networks. More importantly the options of both Authentication & Access Control need to be enabled to support the HTML based authentication required for Guest Access. For more information on both of these options please refer to the HP ProCurve Admin Guide Chapter 5 on VSCs. VSC Access Control Configuration Under the Access Control section there is a critical option that often needs to be enabled in a wired authentication model. The Identify stations based on IP address only is useful when the MSM is not deployed with direct Layer 2 adjacency to the Guest Users. For example, if your MSM was deployed in the centre of a routed Layer 3 network and some Guest traffic was arriving on the MSM LAN port after traversing these routed connections, all Layer 2 MAC address visibility would be lost. Essentially the Layer 2 rewrite functionality of the routers would make all Guest Users appear to be coming from the same MAC address (the router's outbound interface) and therefore the MSM would not be able to differentiate between them from security or session control. Therefore is feature is extremely powerful in these centralized or highly routed designs. CONFIDENTIAL 21