Dell PowerConnect W-Clearpass 100 Software Betriebsanweisung Seite 123
- Seite / 518
- Inhaltsverzeichnis
- FEHLERBEHEBUNG
- LESEZEICHEN
Bewertet. / 5. Basierend auf Kundenbewertungen
ClearPass Guest 3.9 | Deployment Guide RADIUS Services | 123
Example: Location-Specific VLAN Assignment
In this example, the value of a vendor-specific VLAN attribute will be modified based on the NAS to which
visitors are connecting.
The network has an Aruba wireless controller at 192.168.30.2 which should be configured to place all visitor
traffic into VLAN ID 100. There is another Aruba wireless controller at 192.168.40.2 which should be
configured to place visitor traffic into VLAN ID 200.
1. Create a new role named Sample role
2. Click the Add Attribute tab.
3. Select the Aruba vendor, and then select the Aruba-User-Vlan attribute from the drop-down list. Enter
the following value for the attribute:
<?= GetAttr('NAS-IP-Address') == '192.168.30.2' ? '100' : '200'
4. Select Always from the Condition drop-down list and click the Add Attribute button.
5. Click the Save Changes button to apply the new settings to the role.
Explanation: The GetAttr() function returns the value of an attribute that was supplied to the RADIUS
server with the Access-Request. Here, the NAS-IP-Address attribute is retrieved, which will contain the IP
address of the NAS making the RADIUS request. PHP’s ternary operator (?:) is used to check if the NAS is
192.168.30.2; if it is, then 100 is returned as the VLAN ID. In all other cases, the value 200 is returned as the
VLAN ID.
Multiple ternary statements can be nested in parentheses to allow more than two values to be checked. For
example, to check against three values, and return a default value if none of the values are matched, use a
PHP expression like the following:
(GetAttr('NAS-IP-Address') == 'value1' ? 'result1' : (GetAttr('NAS-IP-Address') ==
'value2' ? 'result2' : (GetAttr('NAS-IP-Address') == 'value3' ? 'result3' :
'default_value')))
Configuring MAC Caching During User Authentication
You can control MAC caching during user authentication without having to write complex expressions
within the role.
To configure MAC device caching for a role during user authentication:
1. Go to RADIUS > User Roles and click the role’s row, then click its Edit link. The RADIUS Role Editor
form opens.
2. In the MAC Cache area at the bottom of the form, mark the Enabled check box. The form expands to
include options for the role override, expiration, and device limit settings.
- ClearPass Guest 3.9 1
- 1344 Crossman Avenue 2
- Sunnyvale, California 94089 2
- Phone: 408.227.4500 2
- Fax 408.227.4550 2
- Contents 3
- Chapter 1 19
- Documentation Overview 20
- Getting Support 21
- If You Need More Assistance 22
- Chapter 2 23
- Reference Network Diagram 24
- Key Interactions 24
- AAA Framework 25
- Key Features 27
- Table 3 Common Terms 29
- Term Explanation 29
- Deployment Process 30
- Site Preparation Checklist 31
- Chapter 3 33
- VMware ESXi 34
- Console Login 35
- # Option Description 36
- Logging In 37
- Setting the System Hostname 39
- Configuring SNMP Settings 42
- Setup Completion 47
- Chapter 4 49
- Deployment Step Reference 50
- Onboard Feature List 51
- Supported Platforms 51
- Certificate Hierarchy 52
- Re-Provisioning a Device 54
- The ClearPass Onboard Process 58
- Accessing Onboard 64
- <p> 65
- Request page is displayed 75
- Minimum Period of 12 weeks 79
- Maximum Period of 52 weeks 79
- Creating a Certificate 80
- Managing Certificates 82
- Searching for Certificates 83
- Working with Certificates 83
- Requesting a Certificate 87
- Configuring Proxy Settings 102
- Onboard Troubleshooting 111
- Chapter 5 113
- Debug RADIUS Server 114
- Server Configuration 115
- User Roles 117
- Creating a User Role 118
- Adding Role Attributes 119
- Defining Attribute Tags 120
- AccessReject(); 121
- 'default_value'))) 123
- Network Access Servers 124
- Motorola (RFC 3576 support) 126
- Ruckus Networks 126
- Trendnet 126
- Xirrus 126
- Web Logins 128
- Creating a Web Login Page 129
- NAS Redirect Parameters 134
- NAS Login Parameters 135
- Using Web Login Parameters 135
- {$extra_fields.wlan} 136
- Solution Implementation 138
- Database Lists 140
- Dictionary 141
- Import Dictionary 142
- Export Dictionary 142
- Reset Dictionary 142
- Creating a New Vendor 143
- Edit Vendor 143
- Delete Vendor 143
- Export Vendor 143
- Vendor-Specific Attributes 144
- Add Attribute Value 145
- Editing Attribute Value 145
- Deleting Attribute Value 146
- PEAP Sample Configuration 152
- Configuring an LDAP EAS 166
- Chapter 6 179
- Operator Profiles 180
- Customizing Forms and Views 185
- Operator Profile Privileges 186
- Managing Operator Profiles 186
- Local Operator Authentication 187
- Viewing All Operator Logins 188
- LDAP Operator Authentication 190
- Advanced LDAP URL Syntax 193
- Viewing the LDAP Server List 193
- Testing Connectivity 194
- Looking Up Sponsor Names 195
- LDAP Translation Rules 196
- Operator Logins Configuration 200
- Operator Password Options 201
- Automatic Logout 202
- Chapter 7 203
- Sponsored Guest Access 204
- Self Provisioned Guest Access 204
- Creating a Guest Account 205
- Managing Guest Accounts 211
- Importing Guest Accounts 216
- Guest Manager Customization 220
- Verification Properties 225
- Basic User Properties 225
- Account Expiration Types 227
- Standard Fields 228
- Standard Forms and Views 228
- Customization of Fields 229
- Creating a Custom Field 230
- Duplicating a Field 231
- Editing a Field 231
- Deleting a Field 231
- Editing Forms and Views 232
- Duplicating Forms and Views 233
- Editing Forms 233
- Form Field Editor 234
- Form Display Properties 235
- Form Validation Properties 245
- 0 => 1 246
- 1 => 100 246
- Editing Views 252
- View Field Editor 253
- Using a Parent Page 258
- Paying for Access 258
- Editing Receipt Actions 262
- Editing Login Page Properties 267
- Customizing Print Templates 271
- Creating New Print Templates 272
- Print Template Wizard 273
- Create the Print Template 276
- MAC Address Formats 279
- Managing Devices 280
- Activating a Device 283
- Editing a Device 283
- MAC Creation Modes 285
- Add or enable mac 288
- Figure 35 RADIUS Role Editor 291
- Importing MAC Devices 292
- Advanced MAC Features 293
- Active Sessions Management 294
- Session States 295
- Sending Multiple SMS Alerts 301
- SMS Services 302
- Sending an SMS 304
- About SMS Credits 305
- SMS Receipt Options 306
- Customize SMS Receipt 308
- SMS Receipt Fields 309
- SMTP Services 310
- Email Receipt Options 312
- SMTP Receipt Fields 314
- Chapter 8 317
- Running and Managing Reports 318
- Edit a report 319
- Delete a Report 320
- Duplicate a Report 320
- Permissions 320
- Exporting Report Definitions 322
- Importing report Definitions 323
- Resetting Report Definitions 323
- About Custom Reports 324
- 600 * 8) 325
- <?= -date("Z") 326
- Report Type 328
- Report Parameters 329
- Data Source 332
- Select Fields 333
- Source Filters 335
- Classification Groups 337
- Statistics and Metrics 339
- Output Series 342
- Output Series Fields 343
- Output Filters 344
- Presentation Options 346
- Table Presentations 347
- Text Presentations 347
- Creating Reports 348
- Creating the Report – Step 1 349
- Creating the Report – Step 2 349
- Creating Sample Reports 350
- Report Troubleshooting 355
- Troubleshooting Tips 356
- Chapter 9 357
- 1000 Mbit, full duplex 363
- MGT eth0 1 364
- LAN eth1 11 364
- Managing Static Routes 365
- Creating a VLAN Interface 366
- Managing VLAN Interfaces 367
- Active (up) 368
- Active with default gateway 368
- Inactive (down) 368
- Login Access Control 369
- Network Diagnostic Tools 370
- Network Hosts 374
- HTTP Proxy Configuration 375
- SNMP Configuration 375
- Supported MIBs 377
- SMTP Configuration 378
- SSL Certificate 379
- Installing an SSL Certificate 380
- Backup and Restore 383
- Scheduling Automatic Backups 384
- Restoring a Backup 386
- Content Manager 387
- Uploading Content 388
- Security Manager 389
- Performing a Security Audit 390
- Notifications 391
- OS Updates 392
- Plugin Manager 393
- Managing Subscriptions 394
- Viewing Available Plugins 394
- Configuring Plugins 396
- Server Time 399
- 0.pool.ntp.org 400
- 1.pool.ntp.org 400
- 2.pool.ntp.org 400
- System Control 401
- Managing Data Retention 404
- System Information 408
- Adding Disk Space 409
- System Log 411
- Exporting the System Log 412
- Viewing the Application Log 412
- Searching the Application Log 413
- Exporting the Application Log 413
- Chapter 10 415
- Manage Hotspot Sign-up 416
- Hotspot Plans 417
- Modifying an Existing Plan 418
- Creating New Plans 419
- Managing Customer Information 420
- Managing Hotspot Invoice 420
- Customize User Interface 421
- Customize Page One 422
- Customize Page Two 422
- View Hotspot User Interface 424
- Chapter 11 425
- Network Architecture 426
- Deploying an SSL Certificate 427
- Normal Cluster Operation 427
- Failure Detection 427
- Database Replication 427
- Configuration Replication 428
- Primary Node Failure 429
- Secondary Node Failure 429
- Cluster Status 430
- Cluster Setup 431
- Prepare Primary Node 432
- Prepare Secondary Node 434
- Cluster Initialization 434
- Cluster Deployment 435
- Cluster Maintenance 436
- Updating Plugins 438
- Destroying a Cluster 438
- Cluster Troubleshooting 439
- Chapter 12 441
- Standard HTML Styles 442
- Smarty Template Syntax 443
- Comments 444
- Variable Assignment 444
- Conditional Text Blocks 444
- Script Blocks 444
- Repeated Text Blocks 444
- Foreach Text Blocks 445
- Modifiers 445
- Predefined Template Functions 446
- Advanced Developer Reference 450
- {nwa_plugin …} 452
- Date/Time Format Syntax 454
- Format Result 456
- Programmer’s Reference 457
- NwaParseCsv 459
- NwaParseXml 460
- NwaPasswordByComplexity 460
- NwaSmsIsValidPhoneNumber 460
- NwaStrongPassword 460
- NwaVLookup 461
- NwaWordsPassword 461
- GuestManager Standard Fields 461
- Field Description 462
- Hotspot Standard Fields 469
- SMS Services Standard Fields 470
- SMTP Services Standard Fields 470
- Format Picture String Symbols 472
- Function Description 477
- AccessReject() 479
- EnableDebug() 480
- DisableDebug() 480
- GetAttr() 480
- ShowAttr() 480
- MacAddr() 480
- MacEqual() 481
- MacAddrConvert() 481
- GetTraffic() 481
- GetTime() 481
- GetSessions() 482
- GetCallingStationTraffic() 482
- GetUserTraffic() 483
- GetIpAddressTraffic() 483
- GetCallingStationTime() 483
- GetUserTime() 483
- GetIpAddressTime() 483
- GetCallingStationSessions() 484
- GetUserSessions() 484
- GetIpAddressSessions() 484
- GetUserActiveSessions() 484
- GetCurrentSession() 484
- GetUserCurrentSession() 485
- GetIpAddressCurrentSession() 485
- GetUserStationCount() 486
- GetSessionTimeRemaining() 486
- ChangeToRole() 486
- RADIUS Server Options 487
- Value Description 488
- Security Configuration 489
- Proxy Configuration 489
- SNMP Query Configuration 490
- Thread Pool Configuration 490
- EAP Module Configuration 492
- LDAP Module Configuration 495
- Setting Description 496
- Rewrite Module Configuration 498
- Authentication Attributes 499
- Regular Expressions 501
- Regex Matches 502
- Chapter 13 503
- Numerics 507
Verwandte Produkte und Handbücher für Software Dell PowerConnect W-Clearpass 100 Software
Software Dell Thin Client Solutions Handbuch
(52 Seiten)
(52 Seiten)
Software Dell Vizioncore Betriebsanweisung
(180 Seiten)
(180 Seiten)
Software Dell Networking S6000 Betriebsanweisung
(151 Seiten)
(151 Seiten)
Software Dell Force10 Z9000 Bedienungsanleitung
(601 Seiten)
(601 Seiten)
Software Dell Networking S6000 Bedienungsanleitung
(986 Seiten)
(986 Seiten)
Software Dell A02 Betriebsanweisung
(38 Seiten)
(38 Seiten)
Software Dell Vizioncore Betriebsanweisung
(189 Seiten)
(189 Seiten)
Software Dell V1.2 Bedienungsanleitung
(224 Seiten)
(224 Seiten)
© 2020, manymanuals.de. Alle Rechte vorbehalten. | 0.047 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Kommentare zu diesen Handbüchern