3com WX4400 3CRWX440095A Manuel D’Utilisation
454
C
HAPTER
21: C
ONFIGURING
AAA
FOR
N
ETWORK
U
SERS
Bonded Auth Configuration Example
To configure Bonded Auth:
Configure separate authentication rules for the machine and for the
user(s).
user(s).
Set the Bonded Auth period.
Verify the configuration changes.
The following commands configure two 802.1X authentication rules for
access to SSID mycorp. The first rule is for authentication of all trusted
laptop PCs at mycorp.com (host/*-laptop.mycorp.com). The second rule
is for bonded authentication of all users at mycorp.com (*.mycorp.com).
Both rules use pass-through as the protocol, and use RADIUS server
group radgrp1.
access to SSID mycorp. The first rule is for authentication of all trusted
laptop PCs at mycorp.com (host/*-laptop.mycorp.com). The second rule
is for bonded authentication of all users at mycorp.com (*.mycorp.com).
Both rules use pass-through as the protocol, and use RADIUS server
group radgrp1.
WX1200# set authentication dot1x ssid mycorp
host/*-laptop.mycorp.com pass-through radgrp1
success: change accepted.
host/*-laptop.mycorp.com pass-through radgrp1
success: change accepted.
WX1200# set authentication dot1x ssid mycorp *.mycorp.com
bonded pass-through radgrp1
success: change accepted.
bonded pass-through radgrp1
success: change accepted.
The following command sets the Bonded Auth period to 60 seconds, to
allow time for WEP users to reauthenticate:
allow time for WEP users to reauthenticate:
WX1200# set dot1x bonded-period 60
success: change accepted.
success: change accepted.
Displaying Bonded Auth Configuration Information
To display Bonded Auth configuration information, use the following command:
display dot1x config