Filter
Top Products
Configuring AAA for network users 553
Nortel WLAN—Security Switch 2300 Series Configuration Guide
If roses-profile is configured for EXAMPLE\ users on your WSS, WSS Software checks its port list. If, for example, the
current port for EXAMPLE\jose’s connection is on the list of allowed ports specified in roses-profile, the connection is
allowed to proceed. If the port is not in the list (for example, EXAMPLE\jose is on port 12, which is not in the port list),
the authorization fails and client EXAMPLE\jose is rejected.
The Mobility Profile feature is disabled by default. You must enable Mobility Profile attributes on the WSS to use it.
You can enable or disable the feature for the whole WSS only. If the Mobility Profile feature is disabled, all Mobility
Profile attributes are ignored.
To put Mobility Profile attributes into effect on a WSS, type the following command:
WSS# set mobility-profile mode enable
success: change accepted.
To display the name of each Mobility Profile and its ports, type the following command:
WSS# show mobility-profile
Mobility Profiles
Name Ports
========== =====
roses-profle AP 2
AP 3
AP 4
AP 7
AP 9
To remove a Mobility Profile, type the following command:
clear mobility-profile name
Network user configuration scenarios
The following scenarios provide examples of ways in which you use AAA commands to configure access for users:
• “General use of network user commands” (page 554)
• “Enabling RADIUS pass-through authentication” (page 556)
• “Enabling PEAP-MS-CHAP-V2 authentication” (page 557)
• “Enabling PEAP-MS-CHAP-V2 offload” (page 558)
• “Combining 802.1X Acceleration with pass-through authentication” (page 559)
• “Overriding AAA-assigned VLANs” (page 560)