Nortel 2360 Configuration Manual Manual pdf 471 page image
Manuals database logo
manualsdatabase
Your AI-powered manual search engine

Nortel 2360 Configuration Manual

Also see for 2350: Configuration guideRead meQuick start guideUser guideReference guide

Page 1 previewPage 2 previewPage 3 previewPage 4 previewPage 5 previewPage 6 previewPage 7 previewPage 8 previewPage 9 previewPage 10 previewPage 11 previewPage 12 previewPage 13 previewPage 14 previewPage 15 previewPage 16 previewPage 17 previewPage 18 previewPage 19 previewPage 20 previewPage 21 previewPage 22 previewPage 23 previewPage 24 previewPage 25 previewPage 26 previewPage 27 previewPage 28 previewPage 29 previewPage 30 previewPage 31 previewPage 32 previewPage 33 previewPage 34 previewPage 35 previewPage 36 previewPage 37 previewPage 38 previewPage 39 previewPage 40 previewPage 41 previewPage 42 previewPage 43 previewPage 44 previewPage 45 previewPage 46 previewPage 47 previewPage 48 previewPage 49 previewPage 50 previewPage 51 previewPage 52 previewPage 53 previewPage 54 previewPage 55 previewPage 56 previewPage 57 previewPage 58 previewPage 59 previewPage 60 previewPage 61 previewPage 62 previewPage 63 previewPage 64 previewPage 65 previewPage 66 previewPage 67 previewPage 68 previewPage 69 previewPage 70 previewPage 71 previewPage 72 previewPage 73 previewPage 74 previewPage 75 previewPage 76 previewPage 77 previewPage 78 previewPage 79 previewPage 80 previewPage 81 previewPage 82 previewPage 83 previewPage 84 previewPage 85 previewPage 86 previewPage 87 previewPage 88 previewPage 89 previewPage 90 previewPage 91 previewPage 92 previewPage 93 previewPage 94 previewPage 95 previewPage 96 previewPage 97 previewPage 98 previewPage 99 previewPage 100 previewPage 101 previewPage 102 previewPage 103 previewPage 104 previewPage 105 previewPage 106 previewPage 107 previewPage 108 previewPage 109 previewPage 110 previewPage 111 previewPage 112 previewPage 113 previewPage 114 previewPage 115 previewPage 116 previewPage 117 previewPage 118 previewPage 119 previewPage 120 previewPage 121 previewPage 122 previewPage 123 previewPage 124 previewPage 125 previewPage 126 previewPage 127 previewPage 128 previewPage 129 previewPage 130 previewPage 131 previewPage 132 previewPage 133 previewPage 134 previewPage 135 previewPage 136 previewPage 137 previewPage 138 previewPage 139 previewPage 140 previewPage 141 previewPage 142 previewPage 143 previewPage 144 previewPage 145 previewPage 146 previewPage 147 previewPage 148 previewPage 149 previewPage 150 previewPage 151 previewPage 152 previewPage 153 previewPage 154 previewPage 155 previewPage 156 previewPage 157 previewPage 158 previewPage 159 previewPage 160 previewPage 161 previewPage 162 previewPage 163 previewPage 164 previewPage 165 previewPage 166 previewPage 167 previewPage 168 previewPage 169 previewPage 170 previewPage 171 previewPage 172 previewPage 173 previewPage 174 previewPage 175 previewPage 176 previewPage 177 previewPage 178 previewPage 179 previewPage 180 previewPage 181 previewPage 182 previewPage 183 previewPage 184 previewPage 185 previewPage 186 previewPage 187 previewPage 188 previewPage 189 previewPage 190 previewPage 191 previewPage 192 previewPage 193 previewPage 194 previewPage 195 previewPage 196 previewPage 197 previewPage 198 previewPage 199 previewPage 200 previewPage 201 previewPage 202 previewPage 203 previewPage 204 previewPage 205 previewPage 206 previewPage 207 previewPage 208 previewPage 209 previewPage 210 previewPage 211 previewPage 212 previewPage 213 previewPage 214 previewPage 215 previewPage 216 previewPage 217 previewPage 218 previewPage 219 previewPage 220 previewPage 221 previewPage 222 previewPage 223 previewPage 224 previewPage 225 previewPage 226 previewPage 227 previewPage 228 previewPage 229 previewPage 230 previewPage 231 previewPage 232 previewPage 233 previewPage 234 previewPage 235 previewPage 236 previewPage 237 previewPage 238 previewPage 239 previewPage 240 previewPage 241 previewPage 242 previewPage 243 previewPage 244 previewPage 245 previewPage 246 previewPage 247 previewPage 248 previewPage 249 previewPage 250 previewPage 251 previewPage 252 previewPage 253 previewPage 254 previewPage 255 previewPage 256 previewPage 257 previewPage 258 previewPage 259 previewPage 260 previewPage 261 previewPage 262 previewPage 263 previewPage 264 previewPage 265 previewPage 266 previewPage 267 previewPage 268 previewPage 269 previewPage 270 previewPage 271 previewPage 272 previewPage 273 previewPage 274 previewPage 275 previewPage 276 previewPage 277 previewPage 278 previewPage 279 previewPage 280 previewPage 281 previewPage 282 previewPage 283 previewPage 284 previewPage 285 previewPage 286 previewPage 287 previewPage 288 previewPage 289 previewPage 290 previewPage 291 previewPage 292 previewPage 293 previewPage 294 previewPage 295 previewPage 296 previewPage 297 previewPage 298 previewPage 299 previewPage 300 previewPage 301 previewPage 302 previewPage 303 previewPage 304 previewPage 305 previewPage 306 previewPage 307 previewPage 308 previewPage 309 previewPage 310 previewPage 311 previewPage 312 previewPage 313 previewPage 314 previewPage 315 previewPage 316 previewPage 317 previewPage 318 previewPage 319 previewPage 320 previewPage 321 previewPage 322 previewPage 323 previewPage 324 previewPage 325 previewPage 326 previewPage 327 previewPage 328 previewPage 329 previewPage 330 previewPage 331 previewPage 332 previewPage 333 previewPage 334 previewPage 335 previewPage 336 previewPage 337 previewPage 338 previewPage 339 previewPage 340 previewPage 341 previewPage 342 previewPage 343 previewPage 344 previewPage 345 previewPage 346 previewPage 347 previewPage 348 previewPage 349 previewPage 350 previewPage 351 previewPage 352 previewPage 353 previewPage 354 previewPage 355 previewPage 356 previewPage 357 previewPage 358 previewPage 359 previewPage 360 previewPage 361 previewPage 362 previewPage 363 previewPage 364 previewPage 365 previewPage 366 previewPage 367 previewPage 368 previewPage 369 previewPage 370 previewPage 371 previewPage 372 previewPage 373 previewPage 374 previewPage 375 previewPage 376 previewPage 377 previewPage 378 previewPage 379 previewPage 380 previewPage 381 previewPage 382 previewPage 383 previewPage 384 previewPage 385 previewPage 386 previewPage 387 previewPage 388 previewPage 389 previewPage 390 previewPage 391 previewPage 392 previewPage 393 previewPage 394 previewPage 395 previewPage 396 previewPage 397 previewPage 398 previewPage 399 previewPage 400 previewPage 401 previewPage 402 previewPage 403 previewPage 404 previewPage 405 previewPage 406 previewPage 407 previewPage 408 previewPage 409 previewPage 410 previewPage 411 previewPage 412 previewPage 413 previewPage 414 previewPage 415 previewPage 416 previewPage 417 previewPage 418 previewPage 419 previewPage 420 previewPage 421 previewPage 422 previewPage 423 previewPage 424 previewPage 425 previewPage 426 previewPage 427 previewPage 428 previewPage 429 previewPage 430 previewPage 431 previewPage 432 previewPage 433 previewPage 434 previewPage 435 previewPage 436 previewPage 437 previewPage 438 previewPage 439 previewPage 440 previewPage 441 previewPage 442 previewPage 443 previewPage 444 previewPage 445 previewPage 446 previewPage 447 previewPage 448 previewPage 449 previewPage 450 previewPage 451 previewPage 452 previewPage 453 previewPage 454 previewPage 455 previewPage 456 previewPage 457 previewPage 458 previewPage 459 previewPage 460 previewPage 461 previewPage 462 previewPage 463 previewPage 464 previewPage 465 previewPage 466 previewPage 467 previewPage 468 previewPage 469 previewPage 470 previewPage 471 previewPage 472 previewPage 473 previewPage 474 previewPage 475 previewPage 476 previewPage 477 previewPage 478 previewPage 479 previewPage 480 previewPage 481 previewPage 482 previewPage 483 previewPage 484 previewPage 485 previewPage 486 previewPage 487 previewPage 488 previewPage 489 previewPage 490 previewPage 491 previewPage 492 previewPage 493 previewPage 494 previewPage 495 previewPage 496 previewPage 497 previewPage 498 previewPage 499 previewPage 500 previewPage 501 previewPage 502 previewPage 503 previewPage 504 previewPage 505 previewPage 506 previewPage 507 previewPage 508 previewPage 509 previewPage 510 previewPage 511 previewPage 512 previewPage 513 previewPage 514 previewPage 515 previewPage 516 previewPage 517 previewPage 518 previewPage 519 previewPage 520 previewPage 521 previewPage 522 previewPage 523 previewPage 524 previewPage 525 previewPage 526 previewPage 527 previewPage 528 previewPage 529 previewPage 530 previewPage 531 previewPage 532 previewPage 533 previewPage 534 previewPage 535 previewPage 536 previewPage 537 previewPage 538 previewPage 539 previewPage 540 previewPage 541 previewPage 542 previewPage 543 previewPage 544 previewPage 545 previewPage 546 previewPage 547 previewPage 548 previewPage 549 previewPage 550 previewPage 551 previewPage 552 previewPage 553 previewPage 554 previewPage 555 previewPage 556 previewPage 557 previewPage 558 previewPage 559 previewPage 560 previewPage 561 previewPage 562 previewPage 563 previewPage 564 previewPage 565 previewPage 566 previewPage 567 previewPage 568 previewPage 569 previewPage 570 previewPage 571 previewPage 572 previewPage 573 previewPage 574 previewPage 575 previewPage 576 previewPage 577 previewPage 578 previewPage 579 previewPage 580 previewPage 581 previewPage 582 previewPage 583 previewPage 584 previewPage 585 previewPage 586 previewPage 587 previewPage 588 previewPage 589 previewPage 590 previewPage 591 previewPage 592 previewPage 593 previewPage 594 previewPage 595 previewPage 596 previewPage 597 previewPage 598 previewPage 599 previewPage 600 previewPage 601 previewPage 602 previewPage 603 previewPage 604 previewPage 605 previewPage 606 previewPage 607 previewPage 608 previewPage 609 previewPage 610 previewPage 611 previewPage 612 previewPage 613 previewPage 614 previewPage 615 previewPage 616 previewPage 617 previewPage 618 previewPage 619 previewPage 620 previewPage 621 previewPage 622 previewPage 623 previewPage 624 previewPage 625 previewPage 626 previewPage 627 previewPage 628 previewPage 629 previewPage 630 previewPage 631 previewPage 632 previewPage 633 previewPage 634 previewPage 635 previewPage 636 previewPage 637 previewPage 638 previewPage 639 previewPage 640 previewPage 641 previewPage 642 previewPage 643 previewPage 644 previewPage 645 previewPage 646 previewPage 647 previewPage 648 previewPage 649 previewPage 650 previewPage 651 previewPage 652 previewPage 653 previewPage 654 previewPage 655 previewPage 656 previewPage 657 previewPage 658 previewPage 659 previewPage 660 previewPage 661 previewPage 662 previewPage 663 previewPage 664 previewPage 665 previewPage 666 previewPage 667 previewPage 668 previewPage 669 previewPage 670 previewPage 671 previewPage 672 previewPage 673 previewPage 674 previewPage 675 previewPage 676 previewPage 677 previewPage 678 previewPage 679 previewPage 680 previewPage 681 previewPage 682 previewPage 683 previewPage 684 previewPage 685 previewPage 686 previewPage 687 previewPage 688 previewPage 689 previewPage 690 previewPage 691 previewPage 692 previewPage 693 previewPage 694 previewPage 695 previewPage 696 previewPage 697 previewPage 698 previewPage 699 previewPage 700 previewPage 701 previewPage 702 previewPage 703 previewPage 704 previewPage 705 previewPage 706 previewPage 707 previewPage 708 previewPage 709 previewPage 710 previewPage 711 previewPage 712 previewPage 713 previewPage 714 previewPage 715 previewPage 716 previewPage 717 previewPage 718 previewPage 719 previewPage 720 previewPage 721 previewPage 722 previewPage 723 previewPage 724 previewPage 725 previewPage 726 previewPage 727 previewPage 728 previewPage 729 previewPage 730 previewPage 731 previewPage 732 previewPage 733 previewPage 734 previewPage 735 previewPage 736 previewPage 737 previewPage 738 previewPage 739 previewPage 740 previewPage 741 previewPage 742 previewPage 743 previewPage 744 previewPage 745 previewPage 746 previewPage 747 previewPage 748 previewPage 749 previewPage 750 previewPage 751 previewPage 752 previewPage 753 previewPage 754 previewPage 755 previewPage 756 previewPage 757 previewPage 758 preview
Contents
  1. configuration guide
  2. restricted rights legend
  3. legal information
  4. Table Of Contents
  5. Table Of Contents
  6. Table Of Contents
  7. Table Of Contents
  8. Table Of Contents
  9. Table Of Contents
  10. Table Of Contents
  11. Table Of Contents
  12. Table Of Contents
  13. Table Of Contents
  14. Table Of Contents
  15. Table Of Contents
  16. Table Of Contents
  17. Table Of Contents
  18. Table Of Contents
  19. Table Of Contents
  20. Table Of Contents
  21. Table Of Contents
  22. Table Of Contents
  23. Table Of Contents
  24. Table Of Contents
  25. Table Of Contents
  26. Table Of Contents
  27. Table Of Contents
  28. Table Of Contents
  29. Table Of Contents
  30. Table Of Contents
  31. Introducing the Nortel WLAN 2300 system
  32. Documentation
  33. Safety and advisory notices
  34. Using the command-line interface
  35. Command prompts
  36. Syntax notation
  37. Text entry conventions and allowed characters
  38. User wildcards, MAC address wildcards, and VLAN wildcards
  39. VLAN wildcards
  40. Port lists
  41. Virtual LAN identification
  42. Command-line editing
  43. Single-asterisk (*) wildcard character
  44. Understanding command descriptions
  45. WSS setup methods
  46. Overview
  47. Web View
  48. How a WSS gets its configuration
  49. Web Quick Start (2350 and 2360/2361)
  50. Accessing the Web Quick Start
  51. CLI quickstart command
  52. Quickstart example
  53. Remote WSS configuration
  54. Opening the QuickStart network plan in WLAN Management Software
  55. access
  56. Before you start
  57. Types of Administrative Access
  58. Setting the WSS enable password
  59. WMS enable password
  60. Authenticating at the console
  61. Customizing Web-based AAA with "wildcards" and groups
  62. Setting user passwords
  63. Displaying the Web-based AAA configuration
  64. Saving the configuration
  65. Local authentication
  66. Local override and backup local authentication
  67. Authentication when RADIUS servers do not respond
  68. Managing User Passwords
  69. Setting passwords for local users
  70. Setting the maximum number of login attempts
  71. Configuring password expiration time
  72. Displaying Password Information
  73. Setting the port type
  74. Setting a port for a directly connected AP
  75. Configuring for a AP
  76. Clearing a port
  77. Clearing a AP
  78. Removing a port name
  79. Configuring port operating parameters
  80. Gigabit Ports—autonegotiation and flow control
  81. Resetting a port
  82. Displaying PoE state
  83. Monitoring port statistics
  84. Configuring load-sharing port groups
  85. Removing a port group
  86. Interoperating with Cisco Systems EtherChannel
  87. VLANs, IP subnets, and IP addressing
  88. Traffic forwarding
  89. Configuring a VLAN
  90. Removing an entire VLAN or a VLAN port
  91. Changing tunneling affinity
  92. Displaying VLAN information
  93. Managing the layer 2 forwarding database
  94. Displaying forwarding database entries
  95. Adding an entry to the forwarding database
  96. Changing the aging timeout period
  97. Configuring and managing IP interfaces and services
  98. MTU support
  99. Configuring and managing IP interfaces
  100. Disabling or reenabling an IP interface
  101. Configuring the system IP address
  102. Displaying IP routes
  103. Adding a static route
  104. Removing a static route
  105. Managing the management services
  106. Adding an SSH user
  107. Managing SSH server sessions
  108. Adding a Telnet user
  109. Managing Telnet server sessions
  110. Displaying HTTPS information
  111. Configuring and managing DNS
  112. Adding the default domain name
  113. Adding an alias
  114. Configuring and managing time parameters
  115. Displaying the time zone
  116. Displaying the summertime period
  117. Displaying the time and date
  118. Removing an NTP server
  119. Managing the ARP table
  120. Changing the aging timeout
  121. Logging in to a remote device
  122. Tracing a route
  123. IP interfaces and services configuration scenario
  124. Configuring SNMP
  125. Setting the system location and contact strings
  126. Enabling SNMP versions
  127. Configuring community strings (SNMPv1 and SNMPv2c only)
  128. Creating a USM user for SNMPv3
  129. Command examples
  130. Setting SNMP security
  131. Configuring a notification profile
  133. Configuring a notification target
  135. Enabling the SNMP service
  136. Displaying notification targets
  137. Configuring and managing Mobility Domain roaming
  138. Configuring a Mobility Domain
  139. Configuring a member
  140. Displaying Mobility Domain status
  141. Displaying the Mobility Domain configuration
  142. Monitoring the VLANs and tunnels in a Mobility Domain
  143. Displaying roaming VLANs and their affinities
  144. Requirements for roaming to succeed
  145. Mobility Domain scenario
  146. Configuring network domains
  147. Network domain seed affinity
  148. Configuring a network domain
  149. Configuring network domain seeds
  150. Specifying network domain seed peers
  151. Configuring network domain members
  152. Displaying network domain information
  153. Clearing network domain configuration from a WSS
  154. Clearing a network domain seed from a WSS
  155. Clearing a network domain peer from a network domain seed
  156. Network domain scenario
  157. Configuring RF load balancing for APs
  158. Disabling or re-enabling RF load balancing
  159. Setting strictness for RF load balancing
  160. Configuring APs
  161. Country of operation
  162. Distributed AP network requirements
  163. Distributed APs and DHCP option 43
  164. AP parameters
  165. Boot process for distributed APs
  166. Establishing connectivity on the network
  167. Loading and activating an operational image
  168. AP boot examples
  169. Session load balancing
  170. Public and private SSIDs
  171. Encryption
  172. Auto-RF
  173. Configuring global AP parameters
  174. Specifying the country of operation
  175. Configuring an auto-AP profile for automatic AP configuration
  176. Configured APs have precedence over unconfigured APs
  177. Configuring an auto-AP profile
  178. Configuring AP port parameters
  179. Setting the port type for a directly connected AP
  180. Configuring an indirectly connected AP
  181. Clearing an AP from the configuration
  182. Changing bias
  183. Enabling LED blink mode
  184. Encryption options
  185. Setting the AP security requirement on a WSS
  186. Creating a service profile
  187. Changing the fallthru authentication type
  188. Enforcing the Data Rates
  189. Disabling idle-client probing
  190. Changing the short retry threshold
  191. Creating a new profile
  192. Resetting a radio profile parameter to its default value
  193. Configuring radio-specific parameters
  194. Configuring the external antenna model
  195. AP-2330B and Series 2332 APs
  196. Antenna selection decision trees
  197. Specifying the external antenna model
  198. Assigning a radio profile and enabling radios
  199. Resetting a radio to its factory default settings
  200. Displaying AP information
  201. Displaying connection information for APs
  202. Displaying active connection information for APs
  203. Displaying radio profile information
  204. Displaying static IP address information for APs
  205. Displaying AP statistics counters
  206. Configuring WLAN mesh services
  208. Configuring the Mesh AP
  209. Configuring the Service Profile for Mesh Services
  210. Configuring Security
  211. Enabling Link Calibration Packets on the Mesh Portal AP
  212. Deploying the Mesh AP
  213. Displaying WLAN Mesh Services Information
  214. Configuring user encryption
  215. Configuring WPA
  216. WPA cipher suites
  217. TKIP countermeasures
  218. WPA authentication methods
  219. WPA information element
  220. Client support
  221. Creating a service profile for WPA
  222. Changing the TKIP countermeasures timer value
  223. Displaying WPA settings
  224. Assigning the service profile to radios and enabling the radios
  225. Configuring RSN (802.11i)
  226. Specifying the RSN cipher suites
  227. Displaying RSN settings
  228. Setting static WEP key values
  229. Assigning static WEP keys
  230. Enabling WPA with TKIP
  231. Enabling dynamic WEP in a WPA network
  232. Configuring encryption for MAC clients
  233. Configuring Auto-RF
  234. How channels are selected
  235. Tuning the transmit data rate
  236. Changing Auto-RF settings
  237. Changing power tuning settings
  238. Locking down tuned settings
  239. Displaying RF neighbors
  240. Displaying RF attributes
  241. Configuring APs to be AeroScout listeners
  242. Locating an RFID tag
  243. Using an AeroScout engine
  244. Using WMS
  245. AirDefense integration with the Nortel WLAN 2300 system
  246. Converting an AP into an AirDefense sensor
  247. Copying the AirDefense sensor software to the WSS
  248. Loading the AirDefense sensor software on the AP
  249. Specifying the AirDefense server
  250. Converting an AirDefense sensor back to an AP
  251. Summary of QoS features
  252. End-to-End QoS
  253. QoS mode
  254. WMM QoS mode
  255. SVP QoS mode
  256. U-APSD support
  257. Broadcast control
  258. Changing the QoS mode
  259. Changing the maximum number of active sessions
  260. Using the client DSCP value to classify QoS level
  261. Displaying a service profile's QoS settings
  262. Displaying CoS mappings
  263. Displaying a CoS-to-DSCP mapping
  264. Configuring and managing spanning tree protocol
  265. Enabling the spanning tree protocol
  266. Changing standard spanning tree parameters
  267. port priority
  268. Changing the bridge priority
  269. Changing STP port parameters
  270. Changing the STP port priority
  271. Changing spanning tree timers
  272. Configuring and managing STP fast convergence features
  273. uplink fast convergence
  274. Configuring port fast convergence
  275. Displaying port fast convergence information
  276. Configuring backbone fast convergence
  277. Displaying the backbone fast convergence state
  278. Configuring uplink fast convergence
  279. Displaying uplink fast convergence information
  280. Displaying STP bridge and port information
  281. Displaying the STP port cost on a VLAN basis
  282. Displaying blocked STP ports
  283. Displaying spanning tree statistics
  284. Clearing STP statistics
  285. Configuring and managing IGMP snooping
  286. Enabling the pseudo-querier
  287. Changing the query interval
  288. Changing the other-querier-present interval
  289. Changing the query response interval
  290. Changing the last member query interval
  291. Changing robustness
  292. Changing the router solicitation interval
  293. Adding or removing a static multicast router port
  294. Adding or removing a static multicast receiver port
  295. Displaying multicast configuration information and statistics
  296. Displaying multicast statistics only
  297. Displaying multicast queriers
  298. Displaying multicast routers
  299. Displaying multicast receivers
  300. Configuring and managing security ACLs
  301. Overview of security ACL commands
  302. Security ACL filters
  303. Order in which ACLs are applied to traffic
  304. Setting a source IP ACL
  305. Wildcard masks
  306. Setting an ICMP ACL
  307. Setting TCP and UDP ACLs
  308. Determining the ACE order
  309. Committing a Security ACL
  310. Viewing security ACL information
  311. Viewing security ACL details
  312. Clearing security ACLs
  313. Mapping user-based security ACLs
  314. distributed APs
  315. Modifying a security ACL
  316. Adding another ACE to a security ACL
  317. Placing one ACE before another
  318. Modifying an existing security ACL
  319. Clearing security ACLs from the edit buffer
  320. Using ACLs to change CoS
  321. Filtering based on DSCP values
  322. Enabling prioritization for legacy voice over IP
  323. General guidelines
  324. Enabling VoIP support for TeleSym VoIP
  325. Enabling SVP optimization for SpectraLink phones
  326. Configuring a service profile for WPA
  327. Configuring a VLAN and AAA for voice clients
  328. Disabling Auto-RF before upgrading a SpectraLink phone
  329. Restricting client-to-client forwarding among IP-only clients
  330. Security ACL configuration scenario
  331. Managing keys and certificates
  332. Wireless security through TLS
  333. PEAP-MS-CHAP-V2 security
  334. Public key infrastructures
  335. Public and private keys
  336. Digital certificates
  337. PKCS #7, PKCS #10, and PKCS #12 object files
  338. Creating keys and certificates
  339. your network
  340. Creating public-private key pairs
  341. Generating self-signed certificates
  342. Installing a key pair and certificate from a PKCS #12 object file
  343. object file
  344. Installing a CA's own certificate
  345. Key and certificate configuration scenarios
  346. Creating self-signed certificates
  347. Installing CA-signed certificates from PKCS #12 object files
  348. CSR) and a PKCS #7 object file
  349. SSID name "Any
  350. User credential requirements
  351. Configuring AAA for network users
  352. Authentication
  353. Authentication algorithm
  354. Last-resort processing
  355. Accounting
  356. Summary of AAA features
  357. Wildcards" and groups for network user classification
  358. AAA methods for IEEE 802.1X and Web network access
  359. Remote authentication with local backup
  360. IEEE 802.1X Extensible Authentication Protocol types
  361. Effects of authentication type on encryption method
  362. Configuring 802.1X Acceleration
  363. Using pass-through
  364. Authenticating through a local database
  365. Binding user authentication to machine authentication
  366. Bonded Authentication period
  367. Bonded Authentication configuration example
  368. Configuring authentication and authorization by MAC address
  369. Adding and clearing MAC users and user groups locally
  370. Configuring MAC authentication and authorization
  371. Changing the MAC authorization password for RADIUS
  372. How Web portal Web-based AAA works
  373. Web-based AAA requirements and recommendations
  374. Network requirements
  375. Configuring Web portal Web-based AAA
  376. Web-based AAA users
  377. Using a custom login
  378. Copying and modifying the Web login
  379. Using dynamic fields in Web-based AAA redirect URLs
  380. Using an ACL other than portalacl
  381. Configuring the Web portal Web-based AAA session timeout period
  382. Configuring the Web Portal Web-based AAA Logout Function
  383. Configuring last-resort access for wired authentication ports
  384. Authentication process for users of a third-party AP
  385. Requirements
  386. with tagged SSIDs
  388. Configuring access for any users of a non-tagged SSID
  389. Assigning attributes to users and groups
  390. Assigning SSID default attributes to a service profile
  391. Assigning a security ACL to a user or a group
  392. Assigning a security ACL on a RADIUS server
  393. Assigning encryption types to wireless users
  394. Assigning and clearing encryption types on a RADIUS server
  395. Keeping users on the same VLAN even after roaming
  396. Overriding or adding attributes locally with a location policy
  397. About the location policy
  398. How the location policy differs from a security ACL
  399. Setting the location policy
  400. Displaying and positioning location policy rules
  401. Clearing location policy rules and disabling the location policy
  402. Configuring periodic accounting update records
  403. Enabling system accounting messages
  404. Viewing local accounting records
  405. Viewing roaming accounting records
  406. Displaying the AAA configuration
  407. Avoiding AAA problems in configuration order
  408. Using authentication and accounting rules together
  409. Configuring a Mobility Profile
  410. Network user configuration scenarios
  411. General use of network user commands
  412. Enabling RADIUS pass-through authentication
  413. Enabling PEAP-MS-CHAP-V2 authentication
  414. Enabling PEAP-MS-CHAP-V2 offload
  415. Combining 802.1X Acceleration with pass-through authentication
  416. Overriding AAA-assigned VLANs
  417. Configuring communication with RADIUS
  418. Before you begin
  419. Configuring global RADIUS defaults
  420. Setting the system IP address as the source address
  421. Configuring individual RADIUS servers
  422. Deleting RADIUS servers
  423. Creating server groups
  424. Adding members to a server group
  425. Deleting a server group
  426. Managing 802.1X on the WSS
  427. Enabling and disabling 802.1X globally
  428. Setting 802.1X port control
  429. Enabling 802.1X key transmission
  430. Configuring 802.1X key transmission time intervals
  431. Managing WEP keys
  432. Setting EAP retransmission attempts
  433. Enabling and disabling 802.1X reauthentication
  434. Setting the maximum number of 802.1X reauthentication attempts
  435. Setting the 802.1X reauthentication period
  436. Setting the bonded authentication period
  437. Setting the 802.1X quiet period
  438. Setting the 802.1X timeout for an authorization server
  439. Setting the 802.1X timeout for a client
  440. Viewing 802.1X clients
  441. Viewing the 802.1X configuration
  442. Viewing 802.1X statistics
  443. Configuring SODA endpoint security for a WSS
  444. SODA endpoint security support on WSSs
  445. How SODA functionality works on WSSs
  446. Configuring Web Portal Web-based AAA for the service profile
  447. Creating the SODA agent with SODA manager
  448. Copying the SODA agent to the WSS
  449. Installing the SODA agent files on the WSS
  450. Enabling SODA functionality for the service profile
  451. Disabling enforcement of SODA agent checks
  452. Specifying a SODA agent success
  453. Specifying a SODA agent failure
  454. Specifying a remediation ACL
  455. Specifying a SODA agent logout
  456. Specifying an alternate SODA agent directory for a service profile
  457. Uninstalling the SODA agent files from the WSS
  458. Displaying SODA configuration information
  459. Managing sessions
  460. Displaying and clearing all administrative sessions
  461. Displaying and clearing an administrative console session
  462. Displaying and clearing administrative Telnet sessions
  463. Displaying and clearing client Telnet sessions
  464. Displaying verbose network session information
  465. Displaying and clearing network sessions by username
  466. Displaying and clearing network sessions by MAC address
  467. Displaying and clearing network sessions by VLAN name
  468. Displaying and clearing network sessions by session ID
  469. Displaying and changing network session timers
  470. Disabling keepalive probes
  471. Changing or disabling the user idle timeout
  472. Rogue detection and counter measures
  473. Rogue classification
  474. RF detection scans
  475. Mobility Domain requirement
  476. Configuring rogue detection lists
  477. Configuring a permitted SSID list
  478. Configuring a client black list
  479. Configuring an attack list
  480. Configuring an ignore list
  481. Enabling countermeasures
  482. Using on-demand countermeasures in a Mobility Domain
  483. Disabling or reenabling logging of rogues
  484. DoS attacks
  485. Wireless bridge
  486. IDS log message examples
  487. Displaying RF detection information
  488. Displaying rogue clients
  489. Displaying rogue detection counters
  490. Displaying SSID or BSSID information for a Mobility Domain
  491. Displaying RF detect data
  492. Displaying countermeasures information
  493. Testing the RFPing
  494. Managing system files
  495. Displaying software version information
  496. Displaying boot information
  497. Copying a file
  498. Using an image file's MD5 checksum to verify its integrity
  499. Creating a subdirectory
  500. Removing a subdirectory
  501. Saving configuration changes
  502. Specifying the configuration file to use after the next reboot
  503. Specifying a backup configuration file
  504. Backing up and restoring the system
  505. Managing configuration changes
  506. Upgrading the system image
  507. Upgrading an individual switch using the CLI
  508. Command changes during upgrade
  509. Troubleshooting a WSS
  510. Fixing common WSS setup problems
  511. Recovering the system when the enable password is lost
  512. Configuring and managing the system log
  513. Log message components
  514. Using log commands
  515. Logging to the log buffer
  516. Logging to the console
  517. Setting Telnet session defaults
  518. Saving trace messages in a file
  519. Running traces
  520. Tracing 802.1X sessions
  521. Displaying trace results
  522. Clearing the trace log
  523. Viewing FDB information
  524. Port mirroring
  525. Remotely monitoring traffic
  526. Configuring a snoop filter
  527. Displaying configured snoop filters
  528. Mapping a snoop filter to a radio
  529. Enabling or disabling a snoop filter
  530. Capturing system information and sending it to technical support
  531. The show tech-support command
  532. Debug messages
  533. Sending information to NETS
  534. Enabling and logging onto Web View
  535. Logging onto Web View
  536. Supported RADIUS attributes
  537. Nortel vendor-specific attributes
  538. Traffic ports used by WSS software
  539. DHCP server
  540. How the WSS software DHCP server works
  541. Displaying DHCP server information
  542. Glossary
  543. Index
Nortel 2360 Configuration Manual Manual pdf 471 page image
Configuring AAA for network users 471Nortel WLAN—Security Switch 2300 Series Configuration GuideLast-resort access to an SSID does not require a special user (such as last-resort-ssid) to beconfigured. Instead, if the fallthru authentication type on the SSID’s service profile is set tolast-resort, and the SSID does not have any 802.1X or MAC access rules, a user can access theSSID without entering a username or password.If the user is authenticated, WSS Software then checks the RADIUS server or local database (the same placeWSS Software looked for user information to authenticate the user) for the authorization attributes assigned tothe user. Authorization attributes specify the network resources the user can access.The only required attribute is the Virtual LAN (VLAN) name on which to place the user. RADIUS and WSSSoftware have additional optional attributes. For example, you can provide further access controls by speci-fying the times during which the user can access the network, you can apply inbound and outbound accesscontrol lists (ACLs) to the user’s traffic, and so on.To assign attributes on the RADIUS server, use the standard RADIUS attributes supported on the server. Toassign attributes in the WSS’s local database, use the WSS Software vendor-specific attributes (VSAs).The RADIUS attributes supported by WSS Software are described in “Supported RADIUS attributes”(page 697).WSS Software provides the following VSAs, which you can assign to users configured in the local database oron a RADIUS server: Encryption-Type—Specifies the type of encryption required for access by the client. Clients who attemptto use an unauthorized encryption method are rejected. End-Date—Date and time after which the user is no longer allowed to be on the network. Mobility-Profile—Controls the WSS ports a user can access. For wireless users, a WSS SoftwareMobility Profile specifies the APs through which the user can access the network. For wiredauthentication users, the Mobility Profile specifies the wired authentication ports through which the usercan access the network. SSID—SSID the user is allowed to access after authentication. Start-Date—Date and time at which the user becomes eligible to access the network. WSS Software doesnot authenticate the user unless the attempt to access the network occurs at or after the specified date andtime, but before the end-date (if specified). Time-of-Day—Day(s) and time(s) during which the user is permitted to log into the network. URL—URL to which the user is redirected after successful Web-based AAA. VLAN-Name—VLAN to place the user on.You also can assign the following RADIUS attributes to users configured in the local database. Filter-Id—Security ACL that permits or denies traffic received (input) or sent (output) the WSS. Service-Type—Type of access the user is requesting, which can be network access, administrative accessto the enabled (configuration) mode of the WSS Software CLI, or administrative access to the nonenabledmode of the CLI Session-Timeout—Maximum number of seconds allowed for the user’s session.Regardless of whether you configure the user and attributes on RADIUS servers or the switch’s local database,the VLAN attribute is required. The other attributes are optional.In addition to configuring authorization attributes for users on RADIUS servers or the switch’s local database,you can also configure attributes within a service profile. These authorization attributes are applied to users.No.
/ 758
Related manuals for Nortel 2350
Nortel 2382 Configuration Manual first page preview
Nortel 2382 Configuration Manual
Nortel 2300 Configuration Manual first page preview
Nortel 2300 Configuration Manual
Nortel 325-24T Configuration Manual first page preview
Nortel 325-24T Configuration Manual
Nortel 2300 Series Configuration Manual first page preview
Nortel 2300 Series Configuration Manual
Nortel 2526T Configuration first page preview
Nortel 2526T Configuration
Nortel 5510 Configuration first page preview
Nortel 5510 Configuration
Nortel 4050 Configuration first page preview
Nortel 4050 Configuration
Nortel 2350 Installation And Basic Configuration Manual first page preview
Nortel 2350 Installation And Basic Configuration Manual
Nortel 4524GT Configuration first page preview
Nortel 4524GT Configuration
Nortel WLAN 2300 Series Installation And Configuration Manual first page preview
Nortel WLAN 2300 Series Installation And Configuration Manual
This manual is suitable for:
2350236023612382
Manuals database logo
manualsdatabase
Your AI-powered manual search engine