Extreme Networks IP Service Manager Manual de usuario descargar pdf (Pagina 32)

Deployment Guide – ExtremeXOS, NetSight, NAC on BlackDiamond X8, BlackDiamond 8K, Summit Switches

11. By default, NAC assumes that the switch has reachability to it through VR-Default. If this is

not the case, for example if the switch has reachability to NAC through VR-Mgmt, then one

extra step must be taken before Enforce All: add a NAC property to configure the proper VR.

Property name: EXTREME_RADIUS_CONFIG_VIRTUAL_ROUTER

Property value: VR-Mgmt

After Enforce, this is the CLI that now appears on the switch:

configure radius netlogin primary server 10.65.0.11 1812 client-ip 10.65.1.101 vr VR-Mgmt

configure radius netlogin primary shared-secret encrypted

"GXZU^@E[QM@^IM\VFHQGX"

configure radius-accounting netlogin primary server 10.65.0.11 1813 client-ip 10.65.1.101

vr VR-Mgmt

configure radius-accounting netlogin primary shared-secret encrypted

"GXZU^@E[QM@^IM\VFHQGX"

enable radius netlogin

configure radius netlogin timeout 15

enable radius-accounting netlogin

configure radius-accounting netlogin timeout 15

12. With live traffic, end-systems (a.k.a. “clients” or “hosts”) will show in the End-Systems

tab for switches configured to authenticate with the NAC, for example through NetLogin.

Refer to ExtremeXOS documentation for more details.

1 2 ... 27 28 29 30 31 32 33 34 35

Sin comentarios

Extreme Networks IP Service Manager Manual de usuario Pagina 32