Authenticated Network Overview Configuring Authenticated VLANs
page 21-2 OmniSwitch 6600 Family Network Configuration Guide April 2006
Authenticated Network Overview
An authenticated network involves several components as shown in this illustration.
This chapter describes all of these components in detail, except the external authentication servers, which
are described in Chapter 20, “Managing Authentication Servers.” A brief overview of the components is
given here:
Authentication servers—A RADIUS or LDAP server must be configured in the network. The server
contains a database of user information that the switch checks whenever a user tries to authenticate
through the switch. (Note that the local user database on the switch may not be used for Layer 2 authenti-
cation.) Backup servers may be configured for the authentication server.
• RADIUS or LDAP server. Follow the manufacturer’s instructions for your particular server. The
external server may also be used for Authenticated Switch Access. Server details, such as RADIUS
attributes and LDAP schema information, are given in Chapter 20, “Managing Authentication Servers.”
• RADIUS or LDAP client in the switch. The switch must be set up to communicate with the RADIUS
or LDAP server. This chapter briefly describes the switch configuration. See Chapter 20, “Managing
Authentication Servers,” for detailed information about setting up switch parameters for authentication
servers.
Authentication clients—Authentication clients login through the switch to get access to authenticated
VLANs. There are three types of clients:
• AV-Client. This is an Alcatel-proprietary authentication client. The AV-Client does not require an IP
address prior to authentication. The client software must be installed on the user’s end station. This
chapter describes how to install and configure the client. See “Installing the AV-Client” on page 21-12.
• Telnet client. Any standard Telnet client may be used. A IP address is required prior to authentication.
An overview of the Telnet client is provided in “Setting Up Authentication Clients” on page 21-7.
OmniSwitch 6648
OmniSwitch 6648
Authentication clients
Authentication agent
in the switch
Authentication Network Components
Authenticated
VLAN
Authenticated
VLAN
RADIUS or LDAP servers
DHCP server
Authentication port