5-22
Configuring the RADIUS Server—Without Identity Driven Manager
Configure the NAC 800 as a RADIUS Server
Optionally, append a colon and port number to the IP address or hostname
to specify the port used by your eDirectory server. For example:
10.1.10.10:636
The default LDAP port is 389, and the NAC 800 uses this port if you do not
explicitly specify another. Use the 636 port when you check the
Use a
secure connection (TLS)
box (recommended). See step 9.
4.
In the
Identity
field, enter the DN of an account with administrator rights.
Enter the name in standard LDAP format. For example:
cn=Administrator,dc=MyCompany,dc=com
5.
In the
Password
field, enter the password for the account specified in the
previous step.
6.
In the
Re-enter password
field, enter this password again.
7.
In the
Base DN
field, enter the DN for the object at which the NAC 800
begins the search.
Typically, you should specify the top of the directory. For example:
dc=MyCompany,dc=com
The administrator specified in the
Identity
field should be under the base
DN.
8.
You should leave the
Filter
and
Password
attribute
fields at their default
settings.
As explained in the introduction to “Configure Authentication to an LDAP
Server” on page 5-14, the filter and password attribute help the NAC 800
perform searches within the directory. The values must match exactly the
values used by eDirectory, and the syntax must follow LDAP syntax.
The default filter is shown in Figure 5-7; it tells the NAC 800 to search for
an account in which the “cn” attribute equals whatever username is
submitted in an authentication request. (The “Stripped-User-Domain”
portion of the filter allows the NAC 800 to remove an appended domain
name, which may be necessary to match the cn as stored in the directory.)
The password attribute (default “nspmPassword”) must match the attri-
bute used to store passwords in eDirectory accounts.
N o t e
Be careful when altering the default settings: if you cause searches to fail,
you effectively lock out all users.
Summary of Contents for 800
Page 1: ...Configuration Guide www procurve com ProCurve Network Access Controller 800 ...
Page 2: ......
Page 3: ...ProCurve Network Access Controller 800 Configuration Guide April 2008 1 0 30398 ...
Page 74: ...1 62 Overview of the ProCurve NAC 800 Deployment Methods ...
Page 155: ...3 27 Initial Setup of the ProCurve NAC 800 System Settings ...
Page 194: ...3 66 Initial Setup of the ProCurve NAC 800 Digital Certificates ...
Page 336: ...6 8 Disabling Endpoint Integrity Testing Overview ...
Page 354: ...7 18 Redundancy and Backup for RADIUS Services Back Up Your NAC 800 Configuration ...
Page 380: ...A 26 Appendix A Glossary ...
Page 394: ...B 14 Appendix B Linux Commands Service Commands ...
Page 405: ......