HP 6125XLG R2306-HP 6125XLG Blade Switch Security Configuration Guide - Page 88
Configuration prerequisites, Configuration task list, Enabling MAC authentication
View all HP 6125XLG manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 88 highlights
For more information about configuring local authentication and RADIUS authentication, see "Configuring AAA." Configuration prerequisites Before you configure MAC authentication, complete the following tasks: 1. Configure an ISP domain and specify an AAA method. For more information, see "Configuring AAA." { For local authentication, you must also create local user accounts (including usernames and passwords), and specify the lan-access service for local users. { For RADIUS authentication, make sure the device and the RADIUS server can reach each other, and create user accounts on the RADIUS server. If you are using MAC-based accounts, make sure the username and password for each account are the same as the MAC address of each MAC authentication user. 2. Make sure the port security feature is disabled. For more information about port security, see "Configuring port security." Configuration task list Tasks at a glance (Required.) Enabling MAC authentication (Optional.) Specifying a MAC authentication domain (Optional.) Configuring the user account format (Optional.) Configuring MAC authentication timers (Optional.) Set the maximum number of concurrent MAC authentication users on the port Enabling MAC authentication You cannot enable MAC authentication on a port already in a link aggregation group or a service loopback group, or add a MAC authentication enabled port to a link aggregation group or a service loopback group. For MAC authentication to take effect on a port, you must enable it globally and on the port. To enable MAC authentication: Step 1. Enter system view. 2. Enable MAC authentication globally. 3. Enter interface view. Command system-view mac-authentication interface interface-type interface-number Remarks N/A By default, MAC authentication is disabled globally. N/A 79