freeradius auto-vlan 3com switch 4500G
Krzysztof Olędzki
krzysztof.oledzki at axelspringer.pl
Fri Nov 16 00:10:23 CET 2007
On 2007-11-11 18:27, Philippe Breton wrote:
> On Sun, 2007-11-11 at 17:37 +0100, Krzysztof Olędzki wrote:
>> On 2007-11-10 17:30, Philippe Breton wrote:
>>>> Did you setup your switch properly:
>>>>
>>>> domain (...)
>>>> vlan-assignment-mode string
>>> Hard to give a 100% answer on this question. I believe I did with the
>>> help of 3com support.
>> This is the most important part. Please make sure it is set up (display
>> current-configuration).
>
> ... I agree with you. The 4500G is new to me. I believe I got it right.
> One important fact to keep in mind is the semantic is a litle different
> between the 5500g and 4500G, i.e. what's in this doc does not apply in
> the 4500G
> http://www.3com.hu/download/switch_radius_setup.doc/switch_radius_setup.doc
>
> This is my current config:
Please excuse me for the long delay. A day should be longer than 24h. ;)
> description VLAN181
> #
> radius scheme system
> server-type extended
> primary authentication 127.0.0.1 1645
> primary accounting 127.0.0.1 1646
> user-name-format without-domain
> radius scheme radius1
> server-type standard
> primary authentication 192.168.181.18
> key authentication sdfsdfsfsf
> user-name-format without-domain
> #
> domain system
> access-limit disable
> state active
> idle-cut disable
> self-service-url disable
> domain wustl.edu
> authentication default radius-scheme radius1
> access-limit disable
> state active
> idle-cut disable
> self-service-url disable
Please add here:
vlan-assignment-mode string
accounting optional
It is required for 3c5500G, so it should also solve the problem on
3c4500G. If not, please enable radius/mac-authentication/port-security
debugging on the switch.
Best regards,
Krzysztof Olędzki
--
Krzysztof Olędzki
Axel Springer Polska Sp. z o.o.
tel: +48-22-2320969
fax: +48-22-2325530
More information about the Freeradius-Users
mailing list