2-12 Quick EAD Deployment ConfigurationWhen configuring quick EAD deployment, go to these sections for information you are interested in:z Introduction to Quick EAD Deploymentz Configuring Quick EAD Deploymentz Displaying and Maintaining Quick EAD Deploymentz Quick EAD Deployment Configuration Examplez TroubleshootingIntroduction to Quick EAD DeploymentQuick EAD Deployment OverviewAs an integrated solution, an Endpoint Admission Defense (EAD) solution can improve the overalldefense power of a network. In real applications, however, deploying EAD clients proves to be timeconsuming and inconvenient.To address the issue, the H3C S5600 series provides the forcible deployment of EAD clients with802.1x authentication, easing the work of EAD client deployment.Operation of Quick EAD DeploymentQuick EAD deployment is achieved with the two functions: restricted access and HTTP redirection.Restricted accessBefore passing 802.1x authentication, a user is restricted (through ACLs) to a specific range of IPaddresses or a specific server. Services like EAD client upgrading/download and dynamic addressassignment are available on the specific server.HTTP redirectionIn the HTTP redirection approach, when the terminal users that have not passed 802.1x authenticationaccess the Internet through Internet Explorer, they are redirected to a predefined URL for EAD clientdownload.The two functions ensure that all the users without an EAD client have downloaded and installed onefrom the specified server themselves before they can access the Internet, thus decreasing thecomplexity and effort that EAD client deployment may involve.The quick EAD deployment feature takes effect only when the access control mode of an802.1x-enabled port is set to auto.