- 论坛徽章:
- 0
|
华为802.1x配置
sys
sysname snowwolf
#
#系统启动dot1x
dot1x
dot1x authentication-method eap
#
#设置radius认证名为huawei
radius scheme system
radius scheme huawei
server-type standard
primary authentication 10.0.0.1 # 10.0.0.1为802.1x服务器
primary accounting 10.0.0.1
key authentication snowwolf #snowwolf为服务器认证字符
key accounting snowwolf
user-name-format without-domain
#
domain huawei
scheme radius-scheme huawei
domain system
#设置本地用户密码
local-user ciscolinux
password cipher snowwolf393
service-type terminal
level 3
local-user ciscolinux
password cipher snowwolf393
service-type telnet
level 3
#
#设置远程登入
acl number 2001
rule 0 permit source 10.0.0.2 0
rule 3 deny
user-interface aux 0
authentication-mode password
set authentication password cipher snowwolf393
user-interface aux 1 7
user-interface vty 0 1
acl 2001 inbound
set authentication password cipher snowwolf393
user-interface vty 2 4
#端口启动
int g1/0/1
dot1x
本文来自ChinaUnix博客,如果查看原文请点:http://blog.chinaunix.net/u1/42728/showart_332084.html |
|
免费注册
发表于 2007-07-01 21:25