beautypg.com

H3C Technologies H3C Intelligent Management Center User Manual

Page 408

background image

390

{

Transparent Authentication—Whether the MAC address is allowed to use the account and

service for transparent portal authentication. The status can be Enabled or Disabled.

{

Bound/Disable Time—If transparent portal authentication is enabled, this field indicates the
time when the device MAC address was bound to the user and service. If transparent portal

authentication is disabled, this field indicates the time when transparent authentication was

automatically or manually disabled on the device.

Access Device Binding Information area
To pass authentication, an LDAP user must meet all requirements of the access device bindings and
terminal bindings. Empty fields are ignored.

{

Device SN—Sequence number of the access device bound to the LDAP user. An LDAP user can
pass authentication only when sequence number of the access device matches this parameter

value.

{

Port—Port of the access device bound to the LDAP user. An LDAP user can pass the
authentication only when the connected port (of any access device) matches the bound port.

UAM uses the last number of a port number to match access ports. For example, if you specify

port 3, both 1/0/3 and 2/0/3 are considered a match.

{

Outer VLAN ID—Outer VLAN ID bound to the LDAP user. An LDAP user can pass the
authentication only when the VLAN tag of the packets sent by the user matches the bound outer

VLAN tag.

{

VLAN ID/Inner VLAN ID—VLAN ID or inner VLAN ID bound to the LDAP user. A user can pass
the authentication only when the VLAN tag of the packets sent by the user matches the bound

VLAN tag.

{

User SSID—SSID bound to the LDAP user when the user uses wireless access. An LDAP user can
pass authentication only when the used SSID is on the User SSID list.

{

Device IP—IPv4 address of the access device bound to the LDAP user. An LDAP user can pass
authentication only when the connected access device's IP address is on the Device IP list. The

access device IPv4 address is the address when the device is being added to UAM as an access
device.

{

Device IPv6 Address—IPv6 address of the access device bound to the LDAP user. An LDAP user
can pass authentication only when the connected access device's IP address is on the Device

IPv6 Address list. The access device IPv6 address is the address when the device is being added

to UAM as an access device.

Terminal Binding Information area
To pass authentication, the LDAP user must meet all requirements of the access device bindings
and terminal bindings. Empty fields are ignored.

{

Computer Name—Name of the computer bound to the LDAP user. An LDAP user can pass

authentication only when the computer name matches the bound computer name.

{

IMSI—IMSI number bound to the LDAP user. An LDAP user can pass authentication only when
the IMSI number of the user endpoint matches the bound IMSI.

{

Windows Domain—Name of the Windows domain bound to the LDAP user. An LDAP user can
pass authentication only when the computer used by the user joins or logs in to the domain.

{

Terminal IP Address—List of IPv4 addresses or IPv4 address ranges bound to the LDAP user. An
LDAP user can pass authentication only by using an endpoint with a bound IPv4 address or an

IPv4 address in the bound IPv4 address ranges.

See also other documents in the category H3C Technologies Safety: