446
Index
3DES encryption algorithm (IPsec), 244
802.1X
access control methods (HP implementation), 79
access device as authentication initiator, 75
ACL assignment, 81
architecture, 72
ARP detection configuration, 428
authentication procedures, 76
Auth-Fail VLAN, 80
client as authentication initiator, 75
configuration, 79, 82, 92
configuring authentication, 92
configuring Auth-Fail VLAN, 91
configuring guest VLAN, 90, 94
configuring online user handshake function, 87
configuring VLAN assignment, 94
configuring with ACL assignment, 97
controlled/uncontrolled port, 72
displaying, 92
EAP over LAN, 73
EAP over RADIUS, 74
EAP packet format, 74
EAP relay, 76
EAP termination, 78
EAP-Message attribute, 74
EAPOL packet format, 73
enabling, 83
enabling multicast trigger function, 88
enabling periodic online user re-authentication
function, 90
enabling quiet timer, 89
enabling security entry detection (ARP attack
protection), 424
enabling the proxy detection function, 87
enabling unicast trigger function, 88
fundamentals, 72
guest VLAN, 80
initiating authentication, 75
maintaining, 92
Message-Authenticator attribute, 75
performing authentication (port security), 175
performing combined MAC and 802.1X
authentication (port security), 176
port authorization status, 72
setting max number of authentication request
attempts, 85
setting max number of concurrent users on a port,
85
setting port authorization state, 84
setting timers, 85
specifying access control method, 84
specifying EAP message handling method, 83
specifying mandatory port authentication domain,
89
user profile configuration, 195
using authentication with other features, 79
VLAN assignment, 79
AAA
across MPLS L3VPNs, 10
configuration, 1, 50
configuring for HWTACACS server PPP user, 55
configuring ISP domain accounting method, 45
configuring ISP domain attribute, 41
configuring ISP domain authentication method, 41