H3c-technologies H3C SecPath F1000-E Bedienungsanleitung Seite 6
- Seite / 182
- Inhaltsverzeichnis
- FEHLERBEHEBUNG
- LESEZEICHEN
Bewertet. / 5. Basierend auf Kundenbewertungen
5
The direct authentication/cross-subnet authentication process is as follows:
Step1 An authentication client initiates authentication by sending an HTTP request. When the HTTP packet
arrives at the access device, the access device allows it to pass if it is destined for the portal server or a
predefined free website, or redirects it to the portal server if it is destined for other websites. The portal
server pushes a web authentication page to the user and the user enters the username and password.
Step2 The portal server and the access device exchange Challenge Handshake Authentication Protocol (CHAP)
messages. For Password Authentication Protocol (PAP) authentication, this step is skipped.
Step3 The portal server assembles the username and password into an authentication request message and
sends it to the access device. Meanwhile, the portal server starts a timer to wait for an authentication
acknowledgment message.
Step4 The access device and the RADIUS server exchange RADIUS packets to authenticate the user.
Step5 The access device sends an authentication reply to the portal server.
Step6 The portal server sends an authentication success message to the authentication client to notify it of
logon success.
Step7 The portal server sends an authentication reply acknowledgment message to the access device.
With extended portal functions, the process includes two additional steps:
Step8 The security policy server exchanges security check information with the client to check whether the
authentication client meets the security requirements.
Step9 Based on the security check result, the security policy server authorizes the user to access certain
resources, and sends the authorization information to the access device. The access device then controls
accesses of the user based on the authorization information.
Re-DHCP authentication process
Figure 3 Re-DHCP authentication process
- Table of Contents 1
- Portal Configuration 2
- Portal System Components 3
- Portal Authentication Modes 4
- Configuration Prerequisites 8
- RADIUS Configuration 12
- Firewall Web 12
- Configuration Manual 12
- Portal Packets 13
- 2. Probe parameters 15
- Logging Off Portal Users 17
- Step2 Configure Device 21
- DHCP Configuration 24
- Functions 27
- Information Synchronization 34
- Configuration considerations 35
- Troubleshooting Portal 42
- ALG Configuration 45
- 2. Authenticating the user 46
- Enabling ALG 47
- ALG Configuration Examples 47
- # Enable ALG for NBT 50
- # Configure NAT 50
- RSH Configuration 52
- RSH Configuration Example 53
- SSH2.0 Configuration 57
- Version negotiation 58
- Authentication 58
- Session request 59
- Interaction 59
- SSH Connection Across VPNs 60
- Public Key Commands 61
- Security Volume 61
- Interface Commands 62
- System Volume 62
- Configuring an SSH User 63
- SFTP Service 80
- Working with SFTP Files 83
- Displaying Help Information 84
- SSL Configuration 91
- SSL Configuration Task List 92
- Configuration Procedure 93
- Troubleshooting SSL 97
- Web Filtering Configuration 100
- Java Blocking 101
- ActiveX Blocking 101
- Configuring Web Filtering 102
- Network requirements 103
- Configuration procedure 104
- Invalid Use of Wildcard 107
- Invalid Blocking Suffix 107
- Public Key Configuration 109
- Connection Limit Overview 118
- Verification 121
- Symptom 121
- Analysis 121
- Solution 122
- Contents 123
- Firewall configuration 124
- IPsec Configuration 129
- Implementation of IPsec 130
- Basic Concepts of IPsec 130
- Encapsulation modes 131
- IPsec Tunnel Interface 132
- Configuring IPsec 134
- Implementing ACL-Based IPsec 135
- Mirror image ACLs 137
- Protection modes 138
- Configuring an IPsec Policy 139
- NOTE: 143
- Configuring an IPsec Profile 148
- Tunneling Commands 150
- IP Services Volume 150
- IPsec Configuration Examples 152
- 2. Configure Device B 153
- Configuation procedure 157
- 3. Configure Device C 162
- IKE Configuration 165
- Operation of IKE 166
- IKE Configuration Task List 167
- Gateway 168
- Configuring an IKE Proposal 168
- Configuring an IKE Peer 169
- Setting Keepalive Timers 171
- Configuring a DPD 172
- IKE Configuration Examples 173
- Traversal 175
- Troubleshooting IKE 180
- Proposal Mismatch 181
- ACL Configuration Error 181
Verwandte Produkte und Handbücher für Sicherheit H3c-technologies H3C SecPath F1000-E
(95 Seiten)
(17 Seiten)© 2020, manymanuals.de. Alle Rechte vorbehalten. | 0.171 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Kommentare zu diesen Handbüchern