3com 5500 User Manual
Configuring Dynamic VLAN Assignment with RADIUS Authentication
171
primary authentication 10.110.91.164
key authentication aabbcc
server-type extended
user-name-format with-domain
quit
#
domain cams
scheme radius-scheme cams
Precautions
The Telnet user needs to enter the username with the domain name cams, in the
format userid@cams, so that the user is authenticated according to the
configuration of the domain cams.
format userid@cams, so that the user is authenticated according to the
configuration of the domain cams.
Configuring Dynamic
VLAN Assignment
with RADIUS
Authentication
VLAN Assignment
with RADIUS
Authentication
With the dynamic VLAN assignment function, a switch can dynamically assign an
authenticated user to a specific VLAN according to the attributes issued by the
RADIUS server, thus restricting the user to specific network resources.
authenticated user to a specific VLAN according to the attributes issued by the
RADIUS server, thus restricting the user to specific network resources.
Network Diagram
Figure 44 Network diagram for configuring dynamic VLAN assignment with RADIUS
authentication
authentication
Networking and
Configuration
Requirements
You are required to configure the switch so that users logging into the switch are
authenticated and restricted to specific network resources. The detailed
requirements are as follows:
authenticated and restricted to specific network resources. The detailed
requirements are as follows:
■
All users must pass authentication to access the network.
■
Users can access only VLAN 10 before passing authentication.
■
Users passing authentication can access VLAN 100.
Applicable Products
Internet
Supplicant
Authentication server
Update server
VLAN 10
Eth1/0/1
VLAN 1
Eth1/0/3
VLAN 2
Eth1/0/4
VLAN 100
Eth1/0/2
Product series
Software version Hardware version
Switch 5500
Release V03.02.04
All versions
Switch 5500G
Release V03.02.04
All versions
Switch 4500
Release V03.03.00
All versions