Security Solutions

ManualsBrandsHP ManualsSoftwareHP ProCurve Access Control Client Software

211

212

213

214

215

216

217

218

219

220

3-95

Designing Access Controls

Choose RADIUS Servers

Table 3-71. General Combination for the NAC 800

• Integrated server/proxy—At least some RADIUS servers are built

into the PEPs. The built-in RADIUS servers proxy requests to one or

more NAC 800s, which check credentials against a directory service

and receive policies from their IDM agent.

Table 3-72. Integrated Server/Proxy for the NAC 800

• Turnkey se rver —PEPs send authentication requests to one or more

turnkey NAC 800s, which are managed by IDM and store all creden-

tials and policies.

Table 3-73. Turnkey Server Combination for the NAC 800

• Integrated server/proxy to turnkey server—At least some

RADIUS servers are built in the PEPs. The built-in RADIUS servers

proxy requests to one or more NAC 800s, which are managed by IDM

and store all credentials and policies.

PEPs PDPs Policy Repository Credential

Repository

•Switch

•AP

• Wireless Edge

Services Module

NAC 800 IDM agent Directory service

PEPs with built-in

PDPs

Proxy PDPs Policy Repository Credential

Repository

• AP 530

• Wireless Edge

Services Module

NAC 800 IDM agent Directory service

PEPs PDP with Policy/Credential Repository

•Switch

•AP

• Wireless Edge Services Module

NAC 800 managed by IDM and using its local

database