User`s guide

ManualsBrandsEnterasys ManualsComputer equipmentRoamAbout 3000

Configure Employee Access Services

RoamAbout Switch Manager User’s Guide 3-9

Configure Attributes on the RADIUS Server

To authenticate users, configure users either in the local database or on RADIUS servers. To

configure services for Employee access, configure the following items configured on the RADIUS

server

ToconfiguretheRADIUSserver:

1. ConfigureRADIUSservertoperform802.1XusingtherecommendedEAPmethodPEAP+

MSCHAPV2.

2. SetupeachRoamAboutSwitchasaRADIUSclient.

3. DefineanydesiredEnterasysvendor‐specificattributes(VSAs)intheRADIUSserver’s

dictionary.

Thevendor‐specificattributes(VSAs)createdbyEnterasysNetworksareembedded



accordingtotheprocedurerecommendedinRFC 2865,withVendor‐IDsetto14525.Table 3‐2

describestheEnterasysNetworksVSAs,listedinorderbyvendortypenumber.

Table 3-2 Enterasys Networks VSAs

Attribute

Type,

Vendor

ID, Vendor

Type

Rcv in

Access

Resp?

Sent in

Access

Reqst?

Sent in

Acct

Reqst?

Description

VLAN-Name 26, 14525,

Yes No Yes Name of the VLAN to which the

client belongs.

Mobility-Profile 26, 14525,

Yes No No Name of the Mobility Profile used

by the authorized client.

Encryption-Type 26, 14525,

Yes No No Type of encryption used to

authenticate the client.

Time-Of-Day 26, 14525,

Yes No No Day(s) and time(s) during which a

user can log into the network.

SSID 26, 14525,

Yes No Yes Name of the SSID you want the

user to use. The SSID must be

configured in a service profile, and

the service profile must be used by

a radio profile assigned to

Enterasys radios in the Mobility

Domain.

End-Date 26, 14525,

Yes No No Date and time after which the user

is no longer allowed to be on the

network. Use the following format:

YY/MM/DD-HH:MM

Start-Date 26, 14525,

Yes No No Date and time at which the user

becomes eligible to access the

network. Use the following format:

YY/MM/DD-HH:MM