Introduction to extended portal functions, Portal system components, Authentication client – H3C Technologies H3C S7500E Series Switches User Manual
Page 139: Access device, Introduction to extended portal
8-2
services and personalized services. In this way, broadband network providers, equipment
vendors, and content service providers form an industrial ecological system.
Introduction to Extended Portal Functions
By forcing users to implement patching and anti-virus policies, extended portal functions help
users to defend against viruses. The main extended functions are described as follows:
z
Security checking: Works after identity authentication succeeds to check whether the
required anti-virus software, virus definition file, and operating system (OS) patches are
installed, and no unauthorized software is installed on the host of a user.
z
Resource access limit: A user passing identity authentication can access only network
resources in the quarantined area, such as the anti-virus server and patch server. Only
users passing both identity authentication and security checking can access restricted
network resources.
Portal System Components
As shown in
, a typical portal system consists of five basic components:
authentication client, access device, portal server, authentication/accounting server, and
security policy server.
Figure 8-1 Portal system components
Authentication client
Client system to be authenticated that is installed on a user’s host. It can be a browser using
the Hypertext Transfer Protocol (HTTP) or Hypertext Transfer Protocol Secure (HTTPS), or the
portal client software. The security checking of a client depends on the communications
between the client and the security policy server.
Access device
Device for controlling user access. It can be a switch or router that provides the following three
functions:
z
Redirecting all HTTP requests from unauthenticated users in authentication subnets to the
portal server.