Specifications

ManualsBrandsEnterasys ManualsComputer equipmentRoamAbout RBT-8100

371

372

373

374

375

376

377

378

379

380

Configuring Web Web Portal WebAAA

RoamAbout Mobility System Software Configuration Guide 17-29

5. Displaytheconfiguration:

RBT-8100# show config

# Configuration nvgen'd at 2005-5-09 19:14:10

# Image 4.0.1

# Model RBT-8100

# Last change occurred at 2005-5-09 19:13:45

...

set service-profile mycorpsrvcprof ssid-name mycorp

set service-profile mycorpsrvcprof ssid-type clear

set service-profile mycorpsrvcprof auth-fallthru web-portal

...

set authentication web ssid mycorp ** local

set user web-portal-mycorp attr vlan-name corpvlan

set user web-portal-mycorp attr filter-id portalacl.in

set user alice password alicepword

set user bob password bobpword

...

set vlan corpvlan port 2-3

set interface corpvlan ip 192.168.12.10 255.255.255.0

...

set security acl ip portalacl permit udp 0.0.0.0 255.255.255.255 eq 68

0.0.0.0 255.255.255.255 eq 67

set security acl ip portalacl deny 0.0.0.0 255.255.255.255 capture

commit security acl portalacl

6. Savetheconfigurationchanges:

RBT-8100# save config

success: configuration saved.

Displaying Session Information for Web Portal WebAAA Users

TodisplayusersessioninformationforWebPortalWebAAAusers,usethefollowingcommand:

show sessions network [user user-glob | mac-addr mac-addr-glob | ssid ssid-name |

vlan vlan-glob | session-id session-id | wired] [verbose]

YoucandeterminewhetheraWebPortalWebAAAuserhascompletedtheauthenticationand

authorizationprocess,basedontheusernamedisplayedinthesessiontable.Thefollowing

commandshowsthesessionsforSSIDmycorp.

RBT-8100# show sessions network ssid mycorp

User Sess IP or MAC VLAN Port/

Name ID Address Name Radio

------------------------------ ---- ----------------- --------------- -----

alice 4* 192.168.12.101 corpvlan 3/1

web-portal-mycorp 5 192.168.12.102 corpvlan 3/1

2 sessions total

Thisexampleshowstwosessions.Thesessionforalicehastheuser’snameandisflaggedwithan

asterisk(*).Theasteriskindicatesthattheuserhascompletedauthenticationandauthorization.

Thesessionforweb‐portal‐mycorpindicatesthataWebAAAuserisonthenetworkbutisstill



beingauthenticated.Theuseralicehasalltheaccessprivilegesconfiguredfortheuser,whereas

theuserwhoisstillontheportalsessionwiththenameweb‐portal‐mycorphaslimitedaccess to

resources.Bydefault,thisusercansendandreceiveDHCPtrafficonly.