Alcatel-Lucent 6850-48 ネットワークガイド

Quick Steps for Configuring Access Guardian

Configuring Access Guardian

page 34-8

OmniSwitch AOS Release 6 Network Configuration Guide

-> show 802.1x device classification policies

Device classification policies on 802.1x port 1/10

 Supplicant:

    authentication:

pass: UNP guest-user, block

fail: block

Non-Supplicant:

    block (default)

Captive Portal:

authentication:

pass: default-vlan (default)

fail: block (default)

See the OmniSwitch CLI Reference Guide for information about the fields in this display.

The Host Integrity Check (HIC) feature is a configurable option for Access Guardian User Network 
Profiles (UNP). However, other configuration tasks are required to make the HIC process available 
through the switch. The following quick steps provide a brief tutorial for configuring HIC (InfoExpress 
CyberGatekeeper) server information and the global HIC status and parameter values for the switch:

1 Configure the name, IP address, and shared secret of the InfoExpress CyberGatekeeper server using the 

 command. This step is required before HIC can be enabled for the switch.

-> aaa hic server-name hic_srv1 ip-address 2.2.2.1 secret wwwtoe

2 Enable the HIC feature for the switch using the 

-> aaa hic enable

3 Enable the HIC option for the UNP using the 

 command.

-> aaa user-network-profile name guest_user vlan 500 hic enable

4 Optional. Configure a server name and IP address entry for the HIC exception list using the 

 command.

-> aaa hic allowed-name rem_srv1 ip-address 10.1.1.1

5 Optional. Configure the URL for the web-agent download server using the 

command.

-> aaa hic web-agent-url http://10.10.10.10:2146

6 Optional. Configure the proxy port number for the host device using the 

 

command.

-> aaa his custom-proxy-port 8878

Note. Verify the HIC configuration for the switch using the 

-> show aaa hic

HIC Global Status: Enabled

HIC Web Agent Download URL: http://100.100.100.100:8080/CGAgentLauncher.htm 

HIC Host Custom HTTP Proxy Port: 8383