Security Solutions

ManualsBrandsHP ManualsSoftwareHP ProCurve Access Control Client Software

3-86

Designing Access Controls

Choose RADIUS Servers

Table 3-67. RADIUS Server Locations (Centralizing Policies)

Access Control

Component

Combination

Access Control

Architecture

RADIUS Server

Devices

RADIUS Server

Location

Credential

Repository

Credential

Repository

Location

General Multi-site fully

centralized

Software servers or

NAC 800s

One or more at

central site

Directory

service

Central site

General Multi-site

distributed AAA

with centralized

policies

Software servers or

NAC 800s

One or more at

each site

Directory

service

Central site

Integrated server Multi-site

distributed AAA

with centralized

policies

AP 530s or Wireless

Edge Services

Modules

One or more at

each site

Directory

service

Central site

Integrated server/

proxy

Multi-site fully

centralized

• AP 530s or

Wireless Edge

Services

Modules

• Software servers

or NAC 800s

•One or more

integrated

servers at each

site

•One or more

proxy servers at

central site

Directory

service

Central site

Integrated server/

proxy

Multi-site

distributed AAA

with centralized

policies

• AP 530s or

Wireless Edge

Services

Modules

• Software servers

or NAC 800s

One or more at

each site

Directory

service

Central site

Turnkey server Multi-site fully

centralized

Software servers or

NAC 800s

One or more at

central site

Software

servers or NAC

800s

One (or two)

servers at central

site

Turnkey server Multi-site

distributed AAA

with centralized

policies

Software servers or

NAC 800s

One or more at

each site

Software

servers or NAC

800s

One (or two)

servers at central

site

Integrated server/

proxy with turnkey

server

Multi-site fully

centralized

• AP 530s or

Wireless Edge

Services

Modules

• Software servers

or NAC 800s

•One or more

integrated

servers at each

site

•One or more

proxy servers at

central site

Software

servers or NAC

800s

One (or two)

servers at central

site

Integrated server/

proxy with turnkey

server

Multi-site

distributed AAA

with centralized

policies

• AP 530s or

Wireless Edge

Services

Modules

• Software servers

or NAC 800s

One or more at

each site

Software

servers or NAC

800s

One (two) servers

at central site