Specifications

ManualsBrandsEnterasys ManualsComputer equipmentC2K122-24

701

702

703

704

705

706

707

708

709

710

Configuring Port Web Authentication (PWA)

21-56 Security Configuration

Configuring Port Web Authentication (PWA)

About PWA

PWAprovidesawayofauthenticatingusersbeforeallowinggeneralaccesstothenetwork.A

PWAuser’saccesstothenetworkisrestricteduntilaftertheusersuccessfullylogsinviaaweb

browserusingtheEnterasysNetworks’web‐basedsecurityinterface.TheSecureStackC3device

willvalidatealllogincredentials

fromtheuserwithaRADIUSserverbeforeallowingnetwork

access.

PWAisanalternativeto802.1XandMACauthentication.Itallowsonlytheessentialprotocols

andservicesrequiredbytheauthenticationprocessbetweentheend‐stationandthenetwork.All

othertrafficisdiscarded.Whenauserisinthe

unauthenticatedstate,anyusertrafficrequesting

networkresourceswillnotbeallowed.

Tologonusing PWA,theusermakesarequestviaawebbrowserforthePWAwebpageoris

automaticallyredirectedtothisloginpageafterrequestingaURLinabrowser.

Dependingupontheauthenticated

stateoftheuser,aloginpageoralogoutpagewilldisplay.

Whenausersubmitsusernameandpassword,theswitchthenauthenticatestheuserviaa

preconfiguredRADIUSserver.Iftheloginissuccessful,thentheuserwillbegrantedfullnetwork

accessaccordingtotheuser’spolicyconfiguration

ontheswitch.

Purpose

Toreview,enable,disable,andconfigurePortWebAuthentication(PWA).

Commands

ThecommandsneededtoreviewandconfigurePWAarelistedbelow:

Note: One user per PWA-configured port can be authenticated on SecureStack C3 devices. Only

one method of authentication can be deployed per port.

For information about... Refer to page...

show pwa 21-57

set pwa 21-58

show pwa banner 21-59

set pwa banner 21-60

clear pwa banner 21-60

set pwa displaylogo 21-61

set pwa ipaddress 21-61

set pwa protocol 21-62

set pwa guestname 21-62

clear pwa guestname 21-63

set pwa guestpassword 21-63

set pwa gueststatus 21-64