Configuring 802.1X Port-based Authentication

Before configuring 802.1X Port-based Authentication services, familiarize yourself with the usage scenario, complete the pre-configuration tasks, and obtain the data required for the configuration. This helps you complete the configuration task quickly and accurately.

In VS mode, this feature is supported only by the admin VS.

Usage Scenario

A traditional network does not take internal devices into consideration as potential attack sources, and existing network devices are not immune to attacks from internal devices. On a mobile bearer network, NodeBs of different carriers may share an equipment room. If the NetEngine 8000 F that serves as an aggregation device cannot distinguish between authorized and unauthorized NodeBs, the network is at risk. Therefore, the NetEngine 8000 F must be configured with security functions to control NodeB access to the network.

802.1X Port-based Authentication can be configured on the interfaces of the NetEngine 8000 F to authenticate and control access devices. This authentication implements port-based network access control.

Pre-configuration Tasks

IEEE 802.1X provides only a user identity authentication mechanism. Therefore, RADIUS authentication is required to complete user identity authentication. Before configuring 802.1X authentication, complete the following tasks:

  • Configure an authentication scheme (RADIUS authentication).
  • Configure a RADIUS server group.
  • Configure user names and passwords on the RADIUS server.
Parent Topic: Security
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >