beautypg.com

Verification – H3C Technologies H3C SecPath F1000-E User Manual

Page 22

background image

21

[Device-radius-rs1] key authentication radius

[Device-radius-rs1] key accounting radius

# Specify that the ISP domain name should not be included in the username sent to the RADIUS server.

[Device-radius-rs1] user-name-format without-domain

[Device-radius-rs1] quit

Configure an authentication domain

# Create an ISP domain named dm1 and enter its view.

[Device] domain dm1

# Configure the ISP domain to use RADIUS scheme rs1.

[Device-isp-dm1] authentication portal radius-scheme rs1

[Device-isp-dm1] authorization portal radius-scheme rs1

[Device-isp-dm1] accounting portal radius-scheme rs1

[Device-isp-dm1] quit

# Configure dm1 as the default ISP domain for all users. Then, if a user enters a username without any

ISP domain at logon, the authentication and accounting methods of the default domain will be used for

the user.

[Device] domain default enable dm1

Configure portal authentication

# Configure the portal server.

[Device] portal server newpt ip 192.168.0.111 key portal port 50100 url

http://192.168.0.111:8080/portal

# Enable portal authentication on the interface connecting the host.

[Device] interface gigabitethernet 0/2

[Device–GigabitEthernet0/2] portal server newpt method direct

[Device–GigabitEthernet0/2] quit

Verification

After the above configuration, execute the following command to see whether the portal configuration

has taken effect:

[Device] display portal interface gigabitethernet 0/2

Interface portal configuration:

GigabitEthernet0/2: Portal running

Portal server: newpt

Portal backup-group: None

Authentication type: Direct

Authentication domain:

Authentication network:

address : 0.0.0.0 mask : 0.0.0.0

The user can initiate portal authentication by using the H3C iNode client or by accessing a web page.
All the initiated web requests will be redirected to the portal authentication page

http://192.168.0.111:8080/portal. Before passing portal authentication, the user can access only the

authentication page. After passing portal authentication, the user can access Internet resources.
After the user passes the portal authentication, you can use the following command to view the portal

user information on Device.

[Device] display portal user interface gigabitethernet 0/2

Index:19

This manual is related to the following products:
See also other documents in the category H3C Technologies Safety: