Alcatel-Lucent 6850-48 Guida Di Riferimento
AAA Commands
page 58-84
OmniSwitch CLI Reference Guide
September 2009
aaa hic server-name
Configures the identity of the Host Integrity Check (HIC) InfoExpress CyberGatekeeper server. HIC is a
User Network Profile (UNP) option that when enabled, verifies the integrity of a device connected to the
switch. Both HIC and UNP are components of the Access Guardian security framework.
User Network Profile (UNP) option that when enabled, verifies the integrity of a device connected to the
switch. Both HIC and UNP are components of the Access Guardian security framework.
aaa hic server-name server ip-address ip_address secret secret [udp-port udp_port]
aaa hic no server-name server
Syntax Definitions
server
The name of the HIC server.
ip_address
The IP address of the HIC server.
secret
The shared secret known to the switch and the server, but which is not
sent over the network. Can be any text or hexadecimal string but MUST
match the secret configured on the server. The secret is case-sensitive.
sent over the network. Can be any text or hexadecimal string but MUST
match the secret configured on the server. The secret is case-sensitive.
udp_port
The UDP destination port number (1025–65536) for HIC requests.
Defaults
Platforms Supported
OmniSwitch 6400, 6850, 6855
Usage Guidelines
• A host name, IP address, and a secret are required when configuring a server.
• Use the no form of the command to remove a HIC server from the configuration.
• Only one HIC server per switch is supported.
• Configuring the HIC server identity and related parameters is required before globally enabling the
HIC feature for the switch.
• Configuring server parameters is not allowed when HIC is enabled for the switch.
Examples
-> aaa hic server-name hic-srv1 ip-address 2.2.2.2 secret wwwtoe udp-port 12049
-> aaa hic no server-name hic-srv1
Release History
Release 6.3.4; command was introduced.
parameter
default
udp_port
11707