beautypg.com

Configuration procedure – H3C Technologies H3C S3600 Series Switches User Manual

Page 215

background image

1-25

Figure 1-10 Network diagram for guest VLAN configuration

Internet

Update server

Authentication server

PC

VLAN 10

Eth1/0/1

Guest VLAN 10: VLAN 1

Eth1/0/2

VLAN 1
Eth1/0/3

VLAN 2
Eth1/0/4

VLAN 10

Switch

Printer

Hub

Configuration procedure

The following configuration steps include configurations of AAA and RADIUS. For details about these

commands, refer to AAA Command. The configurations on the 802.1X client and the RADIUS server

are omitted.

# Configure RADIUS scheme 2000.

system-view

[Switch] radius scheme 2000

[Switch-radius-2000] primary authentication 10.11.1.1 1812

[Switch-radius-2000] primary accounting 10.11.1.1 1813

[Switch-radius-2000] key authentication abc

[Switch-radius-2000] key accouting abc

[Switch-radius-2000] user-name-format without-domain

[Switch-radius-2000] quit

# Configure the ISP domain and apply the scheme 2000 to the domain.

[Switch] domain system

[Switch-isp-system] scheme radius-scheme 2000

[Switch-isp-system] quit

# Set the username type for MAC authentication to MAC address that requires no hyphened lowercase

MAC addresses as the username and password.

[Switch] mac-authentication authmode usernameasmacaddress usernameformat without-hyphen

# Configure the ISP domain for MAC authentication.

[Switch] mac-authentication domain system

This manual is related to the following products:
See also other documents in the category H3C Technologies Routers: