Filter
Top Products
467
Nortel WLAN—Security Switch 2300 Series Configuration Guide
Configuring AAA for network users
About AAA for network users
Network users include the following types of users:
• Wireless users—Users who access the network by associating with an SSID on a Nortel radio.
• Wired authentication users—Users who access the network over an Ethernet connection to a WSS port that is
configured as a wired authentication (wired-auth) port.
You can configure authentication rules for each type of user, on an individual SSID or wired authentication port basis.
WSS Software authenticates users based on user information on RADIUS servers or in the WSS’s local database. The
RADIUS servers or local database authorize successfully authenticated users for specific network access, including
VLAN membership. Optionally, you also can configure accounting rules to track network access information.
The following sections describe the WSS Software authentication, authorization, and accounting (AAA) features in
more detail.
About AAA for network users . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 467
AAA tools for network users . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 475
Configuring 802.1X authentication . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 482
Configuring authentication and authorization by MAC address . . . . . . . . . . . . . . . . 490
Configuring Web portal Web-based AAA . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 493
Configuring last-resort access . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 513
Configuring AAA for users of third-party APs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 516
Assigning authorization attributes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 522
Overriding or adding attributes locally with a location policy . . . . . . . . . . . . . . . . . 537
Configuring accounting for wireless network users . . . . . . . . . . . . . . . . . . . . . . . . . 542
Displaying the AAA configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 548
Avoiding AAA problems in configuration order . . . . . . . . . . . . . . . . . . . . . . . . . . . . 549
Configuring a Mobility Profile . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 552
Network user configuration scenarios . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 553