Alcatel-Lucent 6850-48 Guida Di Rete

Authenticated Network Overview

Configuring Authenticated VLANs

page 36-2

OmniSwitch AOS Release 6 Network Configuration Guide

An authenticated network involves several components as shown in this illustration.

This chapter describes all of these components in detail, except the external authentication servers, which 
are described in 

 A brief overview of the components is 

given here:

Authentication servers—A RADIUS or LDAP server must be configured in the network. The server 
contains a database of user information that the switch checks whenever a user tries to authenticate 
through the switch. (Note that the local user database on the switch may not be used for Layer 2 authenti-
cation.) Backup servers may be configured for the authentication server.

• RADIUS or LDAP server. Follow the manufacturer’s instructions for your particular server. The 

external server may also be used for Authenticated Switch Access. Server details, such as RADIUS 
attributes and LDAP schema information, are given in 

• RADIUS or LDAP client in the switch. The switch must be set up to communicate with the RADIUS 

or LDAP server. This chapter briefly describes the switch configuration. See 

 for detailed information about setting up switch parameters for authentication 

servers.

Authentication clients—Authentication clients login through the switch to get access to authenticated 
VLANs. There are three types of clients:

• AV-Client. This is an Alcatel-Lucent-proprietary authentication client. The AV-Client does not require 

an IP address prior to authentication. The client software must be installed on the user’s end station. 
This chapter describes how to install and configure the client. See 

• Telnet client. Any standard Telnet client may be used. A IP address is required prior to authentication. 

An overview of the Telnet client is provided in