Web and MAC Authentication for the Series 2600/2600-PWR and 2800 Switches

Configuring Web Authentication

Syntax: aaa port-access web-based [e] < port-list> [redirect-url <url>] no aaa port-access web-based [e] < port-list> [redirect-url]

Specifies the URL that a user is redirected to after a successful login. Any valid, fully-formed URL may be used, for example, http://welcome-server/welcome.htm or http://192.22.17.5. ProCurve recommends that you provide a redirect URL when using Web Authentica- tion.

Use the no form of the command to remove a specified redirect URL.

(Default: There is no default URL. Browser behavior for authenticated clients may not be acceptable.)

Syntax: aaa port-access web-based [e] < port-list> [server-timeout <1 - 300>]

Specifies the period, in seconds, the switch waits for a server response to an authentication request. Depend- ing on the current max-requestsvalue, the switch sends a new attempt or ends the authentication session.

(Default: 30 seconds)

Syntax: [no] aaa port-access web-based [e] < port-list> [ssl-login]]

Enables or disables SSL login (https on port 443). SSL must be enabled on the switch.

If SSL login is enabled, a user is redirected to a secure page, where they enter their username and password. If SSL login is disabled, a user is not redirected to a secure page to enter their credentials.

Use the no form of the command to disable SSL login. (Default: disabled)

Syntax: aaa port-access web-based [e] < port-list> [unauth-vid <vid>] no aaa port-access web-based [e] < port-list> [unauth-vid]

Specifies the VLAN to use for a client that fails authen- tication. If unauth-vidis 0, no VLAN changes occur.

Use the no form of the command to set the unauth-vidto 0. (Default: 0)

3-21

Page 65
Image 65
HP 4100gl, 2650 (J4899A/B), 2626 (J4900A/B), 2600-PWR, 6108 manual Default 30 seconds