CHAPTER 8. Security
© SAMSUNG Electronics Co., Ltd.
page 439 of 689
8.7 Role Based Access Control
The W-EP WLAN system can manage the user's access authority depending on a
designated role.
It can designate ACL, limit the bandwidth, designate the interface, or manage redirecting
URL, etc. by user.
8.7.1
Configuring Role Profile
The W-EP WLAN system can designate the configuration of ACL, QoS, VLAN, and URL
and manage as a profile.
To provide a service of a role desired to a specific user or a user group, it can use a role
profile.
8.7.1.1
Configuring Profile
The basic settings of the role profile are as follows:
Configuration using CLI
Example:
WEC8500# configure terminal
WEC8500/configure# rbac
WEC8500/configure/rbac# role-profile role_01
WEC8500/configure/rbac/role-profile role_01# acl acl1
WEC8500/configure/rbac/role-profile role_01# qos 1
WEC8500/configure/rbac/role-profile role_01# vlan 10
WEC8500/configure/rbac/role-profile role_01# url
WEC8500/configure/rbac/role-profile role_01# dpi rbac_dpi_01
WEC8500/configure/rbac/role- profile role_01# end
WEC8500# configure terminal
WEC8500/configure# rbac
WEC8500/configure/rbac# no role-profile role_01
WEC8500/configure/rbac# end
CLI for confirming configuration:
WEC8500# show rbac role-profile summary
===== Role Profile Summary =====
Id ProfileName Acl Qos Vlan Url DpiProfileName
== =========== ========== === ==== ==================== ==============
1 role_01 acl1 1 10