72CHAPTER 4: USING 3COM NETWORK ACCESS MANAGER WITHIN A NETWORK
Case Study 1 - | This case study describes the tasks that need to be performed in order to |
Controlling User | control user access to the network using IEEE 802.1X. This method of |
Access To The | authentication is based on the user, and does not perform authentication |
Network | of the PC (or other client device) being used. |
Network | The following provides an overview of the tasks for a network |
Administrator Tasks | administrator responsible for the domain on the network. |
1Ensure edge port security is set to IEEE 802.1X on edge ports in the domain.
Edge ports are called ‘access ports’ on the Switch 5500.
Using 3Com Network Access Manager:
2Select the Default Rule and set the Network Access to Deny, see “Changing Rule Properties” in Chapter 3.
3Create an Authorized Users rule which will allow network access, see “Creating A New Rule”in Chapter 3.
a Set security permissions for the rule. Grant READ and WRITE access to the users/groups permitted to apply the rule, grant READ access to all Network Administrators in the domain to ensure they can see that the rule exists even if they are not permitted to apply the rule.
b Set the Actions for the rule: select the rule priority, and set Network Access to Allow, if appropriate select the VLAN, QoS profile and EFW policy for the rule.
4Associate the Authorized Users rule with users and groups already listed in Active Directory
5Ensure the network operators or those individuals responsible for applying the Authorized Users rule have the Network Operator component of 3Com Network Access Manager installed on their PC.
