Initiating 802.1X authentication ··································································································································· 71

802.1X client as the initiator································································································································ 71

Access device as the initiator ······························································································································· 71

802.1X authentication procedures ······························································································································ 72

A comparison of EAP relay and EAP termination ······························································································ 72

EAP relay ································································································································································ 73

EAP termination ····················································································································································· 74

Configuring 802.1X ·················································································································································· 76

HP implementation of 802.1X ······································································································································ 76

Access control methods ········································································································································ 76

Using 802.1X authentication with other features ······························································································ 76

Configuration prerequisites ··········································································································································· 79

802.1X configuration task list ······································································································································· 79

Enabling 802.1X ···························································································································································· 79

Enabling EAP relay or EAP termination ······················································································································· 80

Setting the port authorization state ······························································································································ 80

Specifying an access control method ·························································································································· 81

Setting the maximum number of concurrent 802.1X users on a port ······································································· 82

Setting the maximum number of authentication request attempts ············································································· 82

Setting the 802.1X authentication timeout timers ······································································································· 82

Configuring the online user handshake function ········································································································ 83

Configuration guidelines ······································································································································ 83

Configuration procedure ······································································································································ 83

Configuring the authentication trigger function ·········································································································· 84

Specifying a mandatory authentication domain on a port ························································································ 85

Configuring the quiet timer ··········································································································································· 85

Enabling the periodic online user re-authentication function ····················································································· 86

Configuring an 802.1X guest VLAN ··························································································································· 86

Configuring an 802.1X Auth-Fail VLAN ······················································································································ 87

Specifying supported domain name delimiters ··········································································································· 88

Displaying and maintaining 802.1X ··························································································································· 89

802.1X configuration examples ··································································································································· 89

802.1X authentication configuration example ·································································································· 89

802.1X guest VLAN and VLAN assignment configuration example ······························································· 91

Configuring MAC authentication ······························································································································ 95

Overview ········································································································································································· 95

User account policies ············································································································································ 95

Authentication approaches ·································································································································· 95

MAC authentication timers ··································································································································· 96

Using MAC authentication with VLAN assignment ···································································································· 96

MAC authentication configuration task list ················································································································· 96

Basic configuration for MAC authentication ··············································································································· 96

Specifying an authentication domain for MAC authentication users ······································································· 98

Displaying and maintaining MAC authentication ······································································································ 98

MAC authentication configuration examples ·············································································································· 99

Local MAC authentication configuration example····························································································· 99

RADIUS-based MAC authentication configuration example··········································································· 100

Configuring portal authentication ·························································································································· 103

Table of Contents

HP 12500 Series Configuration Manual page 4

Troubleshooting

Related Products for HP 12500 Series

HP 12500 Series Configuration Manual page 4

Troubleshooting

Related Manuals for HP 12500 Series

Related Products for HP 12500 Series

Table of Contents