Specifications
Network User Configuration Scenarios
RoamAbout Mobility System Software Configuration Guide 17-65
General Use of Network User Commands
ThefollowingexampleillustrateshowtoconfigureIEEE802.1Xnetworkusersforauthentication,
accounting,ACLfiltering,and MobilityProfileassignment:
1. Configureall802.1XusersofSSIDmycorpatEXAMPLEtobeauthenticated byservergroup
shorebirds.Typethefollowingcommand:
RBT-8100# set authentication dot1x ssid mycorp EXAMPLE\* pass-through
shorebirds
2. Configurestop‐onlyaccountingforallmycorpusersatEXAMPLE,foraccountingrecordsto
bestoredlocally.Typethefollowingcommand:
RBT-8100# set accounting dot1x ssid mycorp EXAMPLE\* stop-only local
success: change accepted.
3. ConfigureanACLtofiltertheinboundpacketsforeachuseratEXAMPLE.Typethe
followingcommandforeachuser:
RBT-8100# set user EXAMPLE\username attr filter-id acl-101.in
Thiscommandappliestheaccesslistnamedacl‐101toeachuseratEXAMPLE.
4. TodisplaytheACL,typethefollowingcommand:
RBT-8100# show security acl info acl-101
set security acl ip acl-101 (hits #0 0)
----------------------------------------------------
1. permit IP source IP 192.168.1.1 0.0.0.255 destination IP any enable-hits
(FormoreinformationaboutACLs,seeChapter 15,ConfiguringandManagingSecurity
ACLs.)
5. CreateaMobility Profilecalledtulipbytypingthefollowingcommands:
RBT-8100# set mobility-profile name tulip port 2,5-9
success: change accepted.
RBT-8100# set mobility-profile mode enable
success: change accepted.
RBT-8100# show mobility-profile
Mobility Profiles
Name Ports
=========================
tulip
AP 2
AP 6
AP 7
AP 8
AP 9
6. ToassignMobilityProfiletuliptoallusers atEXAMPLE,typethefollowingcommandforeach
EXAMPLE\user:
RBT-8100# set user EXAMPLE\username attr mobility-profile tulip
UsersatEXAMPLEarenowrestrictedtoports 2and5through9,asspecified inthetulip
MobilityProfi leconfiguration.