HP Q.11. (2510-24) Manual do Utilizador Página 188
- Página / 294
- Índice
- MARCADORES
Avaliado. / 5. Com base em avaliações de clientes
8-4
Configuring Port-Based and Client-Based Access Control (802.1X)
Overview
Port-Based access control option allowing authentication by a single client to
open the port. This option does not force a client limit and, on a port opened
by an authenticated client, allows unlimited client access without requiring
further authentication.
• Supplicant implementation using CHAP authentication and indepen-
dent username and password configuration on each port.
■ Prevention of traffic flow in either direction on unauthorized ports.
■ Local authentication of 802.1X clients using the switch’s local user-
name and password (as an alternative to RADIUS authentication).
■ Temporary on-demand change of a port’s VLAN membership status
to support a current client’s session. (This does not include ports that
are members of a trunk.)
■ Session accounting with a RADIUS server, including the accounting
update interval.
■ Use of Show commands to display session counters.
User Authentication Methods
The switch offers two methods for using 802.1X access control. Generally, the
“Port Based” method supports one 802.1X-authenticated client on a port,
which opens the port to an unlimited number of clients. The “Client-Based”
method supports up to two 802.1X-authenticated clients on a port. In both
cases, there are operating details to be aware of that can influence your choice
of methods.
802.1X Client-Based Access Control
802.1X operation with access control on a per-client basis provides client-level
security that allows LAN access to individual 802.1X clients (up to 2 per port),
where each client gains access to the LAN by entering valid user credentials.
This operation improves security by opening a given port only to individually
authenticated clients, while simultaneously blocking access to the same port
for clients that cannot be authenticated. All sessions must use the same
untagged VLAN. Also, an authenticated client can use any tagged VLAN
memberships statically configured on the port, provided the client is config-
ured to use the tagged VLAN memberships available on the port.
- ProCurve Switches 1
- ProCurve Series 2510 Switches 3
- Access Security Guide 3
- 3 Web and MAC Authentication 6
- 4 TACACS+ Authentication 7
- Product Documentation 13
- Feature Index 14
- Getting Started 17
- Introduction 18
- Conventions 21
- Command Prompts 22
- Screen Simulations 22
- Port Identity Examples 22
- Sources for More Information 23
- Need Only a Quick Start? 24
- Menu: Setting Passwords 30
- [?] in the web 32
- Front-Panel Security 33
- Clear Button 34
- Reset Button 35
- Password Recovery 41
- [Y] (for “Yes”) 42
- [N] (for “No”) 42
- Password Recovery Process 43
- Web and MAC Authentication 45
- Client Options 47
- General Features 48
- Authenticator Operation 49
- MAC-based Authentication 51
- Operating Rules and Notes 54
- Note on MAC 58
- Addresses 58
- RADIUS Server 59
- Web-Based Authentication 70
- MAC-Based Authentication 72
- Show Client Status 74
- Terminology Used in TACACS 77
- Applications: 77
- General System Requirements 79
- Privilege Levels 81
- Before You Begin 82
- Configuration 83
- Contact Configuration 84
- Caution Regarding 87
- Login Primary 87
- Encryption Keys 90
- First-Choice TACACS+ Server 92
- How Authentication Operates 94
- Using the Encryption Key 97
- Access When Using TACACS+ 98
- Messages Related to TACACS+ 99
- TACACS+ Authentication 100
- Contents 101
- Overview 102
- Terminology 103
- Authentication 106
- You Want RADIUS To Protect 108
- The switch now 109
- SSH authentication 109
- Local Authentication Process 116
- Configuring RADIUS Accounting 117
- Reports to the RADIUS Server 122
- Updating Options 124
- Viewing RADIUS Statistics 125
- RADIUS Accounting Statistics 129
- as both the 132
- www.openssh.com 135
- Prerequisite for Using SSH 137
- Public Key Formats 137
- Operation 141
- Host Public 144
- Key for the 144
- Bit Size 145
- Exponent <e> 145
- Modulus <n> 145
- Client Contact Behavior 147
- ■ Execute no ip ssh 148
- Public-Key Authentication 155
- Bit Size Exponent <e> 156
- Note on Public 158
- Key Index Number 159
- Message Meaning 162
- Prerequisite for Using SSL 167
- Password 169
- Security Tab 170
- Password Button 170
- Generate New Key 173
- Enter certificate Arguments 173
- Generate New Certificate 173
- Show host certificate command 174
- [SSL] button 176
- Browser Interface 177
- Browser Contact Behavior 179
- Note on Port 182
- Common Errors in SSL Setup 183
- Access Control (802.1X) 185
- User Authentication Methods 188
- as defined in the 192
- 802.1X standard 192
- Note on 802.1X 197
- Access Control 198
- Authenticators 201
- 802.1X Open VLAN Mode 210
- VLAN Membership Priorities 211
- Unauthorized-Client VLANs 215
- Only 802.1X Devices 224
- Note on 225
- Blocking a Non 225
- 802.1X Device 225
- Other Switches 226
- Supplicant Port Configuration 228
- Statistics, and Counters 231
- ■ The Access Control setting 232
- ■ Unauth-VLAN ID (if any) 232
- ■ Auth-VLAN ID (if any) 232
- ■ The switch reboots 237
- After the 802.1X session 241
- Blocking Unauthorized Traffic 245
- Trunk Group Exclusion 246
- Planning Port Security 247
- Learned MAC Addresses 252
- Configuring Port Security 254
- Security Features 259
- Alert Flags 259
- Send-Disable 261
- Resetting Alert Flags 262
- Configuring Protected Ports 269
- Using Authorized IP Managers 271
- Access Levels 273
- Stations 274
- Managers 275
- Building IP Masks 279
- IP Entry 280
- Operating Notes 282
- Numerics 285
- See also port based 285
- 2 – Index 286
- Index – 3 287
- 4 – Index 288
- Index – 5 289
- 6 – Index 290
- Index – 7 291
- 8 – Index 292
Manuais e produtos relacionados com Software HP Q.11. (2510-24)
Software HP 441877-00F Manual do Utilizador
(67 páginas)
(67 páginas)
Software HP 2000s Guia do Utilizador
(200 páginas)
(200 páginas)
Software HP 2012i Manual do Utilizador
(86 páginas)
(86 páginas)
Software HP XP12000 Manual do Utilizador
(38 páginas)
(38 páginas)
Software HP Moonshot-180G Guia do Utilizador
(719 páginas)
(719 páginas)
Software HP 377707-002 Manual do Utilizador
(92 páginas)
(92 páginas)
Software HP 1TB Manual do Utilizador
(80 páginas)
(80 páginas)
Software HP M401dne Manual do Utilizador
(160 páginas)
(160 páginas)
Software HP 441877-00B Manual do Utilizador
(176 páginas)
(176 páginas)
Software HP 200 Manual do Utilizador
(676 páginas)
(676 páginas)
Software HP PROCURVE W.14.03 Manual do Utilizador
(594 páginas)
(594 páginas)
Software HP T8671-91017 Manual do Utilizador
(54 páginas)
(54 páginas)
Software HP MT40 Guia do Utilizador
(74 páginas)
(74 páginas)
Software HP 4100GL Manual do Utilizador
(228 páginas)
(228 páginas)
Software HP rx3000 Series Manual do Utilizador
(301 páginas)
(301 páginas)
© 2020, manymanuals-pt.com. Todos os direitos reservados. | 0.088 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentários a estes Manuais