314
DWS-1008 User’s Manual
D-Link Systems, Inc.
Configuring AAA for Network Users
4.
To display the ACL, type the following command:
DWS-1008#
show security acl info acl-101
set security acl ip acl-101 (hits #0 0)
----------------------------------------------------
1. permit IP source IP 192.168.1.1 0.0.0.255 destination IP any enable-hits
5.
Create a Mobility Profile called
tulip
by typing the following commands:
DWS-1008#
set mobility-profile name tulip port 2,4-6
success: change accepted.
DWS-1008#
set mobility-profile mode enable
success: change accepted.
DWS-1008#
show mobility-profile
Mobility Profiles
Name Ports
=========================
tulip
AP 2
AP 4
AP 5
AP 6
6.
To assign Mobility Profile
tulip
to all users at EXAMPLE, type the following command
for
each
EXAMPLE\ user:
DWS-1008#
set user EXAMPLE\
username
attr mobility-profile tulip
Users at EXAMPLE are now restricted to ports 2 and 4 through 6, as specified in the
tulip
Mobility Profile configuration.
7.
Use the
show aaa
command to verify your configuration. Type the following
command:
DWS-1008#
show aaa
Default Values
authport=1812 acctport=1813 timeout=5 acct-timeout=5
retrans=3 deadtime=0 key=(null) author-pass=(null)
Radius Servers
Server Addr Ports T/o Tries Dead State
-------------------------------------------------------------------
Web Portal:
enabled
set accounting dot1x ssid mycorp EXAMPLE\* stop-only local
set authentication dot1x ssid mycorp EXAMPLE\* pass-through shorebirds