HP (Hewlett-Packard) 2650 (J4899A/B) Switch User Manual


 
3-2
Web and MAC Authentication for the Series 2600/2600-PWR and 2800 Switches
Overview
Overview
Applicable Switch Models. Web and MAC Authentication are available on
these current ProCurve switch models:
ProCurve Series 2600 and 2600-PWR Switches
ProCurve Series 2800 Switches
Web and MAC Authentication are designed for employment on the “edge” of
a network to provide port-based security measures for protecting private
networks and the switch itself from unauthorized access. Because neither
method requires clients to run any special supplicant software, both are
suitable for legacy systems and temporary access situations where introduc-
ing supplicant software is not an attractive option. Both methods rely on using
a RADIUS server for authentication. This simplifies access security manage-
ment by allowing you to control access from a master database in a single
server. (You can use up to three RADIUS servers to provide backups in case
access to the primary server fails.) It also means the same credentials can be
used for authentication, regardless of which switch or switch port is the
current access point into the LAN.
Web Authentication (Web-Auth). This method uses a web page login to
authenticate users for access to the network. When a user connects to the
switch and opens a web browser the switch automatically presents a login
page. The user then enters a username and password, which the switch
forwards to a RADIUS server for authentication. After authentication, the
switch grants access to the secured network. Other than a web browser, the
client needs no special supplicant software.
Note Client web browsers may not use a proxy server to access the network.
Feature Default Menu CLI Web
Configure Web Authentication n/a 3-17
Configure MAC Authentication n/a 3-22
Display Web Authentication Status and Configuration n/a 3-26
Display MAC Authentication Status and Configuration n/a 3-27