Local client authentication configuration example, Network requirements, Configuring the ac – H3C Technologies H3C WX3000E Series Wireless Switches User Manual

421

Local client authentication configuration example

Network requirements

Configure local client authentication on the AC so the AP performs 802.1X authentication on clients

through the RADIUS server whenever the AC-AP connection fails or not.
Deploy the RADIUS server at the AP side so associated 802.1X clients are not logged off when the

connection between the branch and headquarters fails.

Figure 439 Network diagram

Adding commands to the configuration file of the AP

port-security enable

dot1x authentication-method eap

radius scheme rad

primary authentication 192.168.100.254

primary accounting 192.168.100.254

key authentication simple 123456

key accounting simple 123456

user-name-format without-domain

domain cams

authentication default radius-scheme rad

authorization default radius-scheme rad

accounting default radius-scheme rad

Then save the file with the name map.cfg, and upload it to the storage media on the AC.

Configuring the AC

1.

Configure the AP:

a.

Select AP > AP Setup from the navigation tree.

b.

Click Add.

c.

On the page that appears, set the AP name to ap, select the AP model WA3628i-AGN, select
Manual from the Serial ID list, enter the serial ID of the AP, and click Apply.