Dell PowerConnect W-Clearpass 100 Software Podręcznik Użytkownika Strona 492
- Strona / 518
- Spis treści
- ROZWIĄZYWANIE PROBLEMÓW
- BOOKMARKI
Oceniono. / 5. Na podstawie oceny klientów
492 | Reference ClearPass Guest 3.9 | Deployment Guide
Database Module Configuration
EAP Module Configuration
Set the advanced.eap = 1 option to enable additional EAP types to be selected in the RADIUS Services >
Authentication>EAP & 802.1X>EAP Configuration form.
mschap.ntlm_auth The module can perform authentication itself, or use a Windows Domain
Controller. This configuration directive tells the module to call the ntlm_auth
program, which will do the authentication, and return the NT-Key. Note that
you MUST have “winbindd” and “nmbd” running on the local machine for
ntlm_auth to work. See the ntlm_auth program documentation for details.
Table 61 Database Modeule Configuration Settings
Value Description
sql.case_insensitive_usernames = 0 Set this option to 1 to match usernames in the local user database
without regard to case. This will allows basic RADIUS authentication to
work when the case of the username provided by the NAS is different
from the case of the username in the local user database. Note that this
may have unexpected effects in certain authorization or accounting
contexts, or when creating user accounts.
This option does not control how external authentication servers
perform username matches; these may be case-sensitive or case-
insensitive depending on the type of server and its configuration. The
default and recommended setting is to perform case-sensitive
username matching.
sql.num_sql_socks = 5 The number of SQL connections to make to the database server.
sql.connect_failure_retry_delay = 60 The number of seconds to delay retrying on a failed database
connection (per socket).
sql.safe_characters = not set A list of characters that may be stored in database fields without being
escaped. This may be set to the value “all” to indicate all standard
ASCII characters. This string should not include any ASCII characters
with a value of 128 or more as this could result in a string with an invalid
UTF-8 encoding being sent to the database.
sql.simultaneous_stale_time = 86400 The “stale time” determines how much time must elapse without any
interim accounting updates before an open session is considered
“stale” and will no longer count towards a user’s session limit. Stale
sessions are displayed in the Active Sessions list using a different state
icon. This parameter is measured in seconds; the default corresponds
to a value of 24 hours.
override.session.radutmp = yes Set this parameter to “yes” to enable session limits in the case where
guest accounts are limited to a maximum of one or more concurrent
sessions. It is important to ensure that when this configuration option is
in effect, the NAS is able to reliably send accounting stop messages.
Otherwise, sessions will not be closed and this can lead to the same
account being denied access when they are not actually logged in.
When this occurs, the user's previous session will be shown as active in
the active session list; it can be closed manually here.
Table 60 Authentication Module Configuration Settings (Continued)
Value Description
- ClearPass Guest 3.9 1
- 1344 Crossman Avenue 2
- Sunnyvale, California 94089 2
- Phone: 408.227.4500 2
- Fax 408.227.4550 2
- Contents 3
- Chapter 1 19
- Documentation Overview 20
- Getting Support 21
- If You Need More Assistance 22
- Chapter 2 23
- Reference Network Diagram 24
- Key Interactions 24
- AAA Framework 25
- Key Features 27
- Table 3 Common Terms 29
- Term Explanation 29
- Deployment Process 30
- Site Preparation Checklist 31
- Chapter 3 33
- VMware ESXi 34
- Console Login 35
- # Option Description 36
- Logging In 37
- Setting the System Hostname 39
- Configuring SNMP Settings 42
- Setup Completion 47
- Chapter 4 49
- Deployment Step Reference 50
- Onboard Feature List 51
- Supported Platforms 51
- Certificate Hierarchy 52
- Re-Provisioning a Device 54
- The ClearPass Onboard Process 58
- Accessing Onboard 64
- <p> 65
- Request page is displayed 75
- Minimum Period of 12 weeks 79
- Maximum Period of 52 weeks 79
- Creating a Certificate 80
- Managing Certificates 82
- Searching for Certificates 83
- Working with Certificates 83
- Requesting a Certificate 87
- Configuring Proxy Settings 102
- Onboard Troubleshooting 111
- Chapter 5 113
- Debug RADIUS Server 114
- Server Configuration 115
- User Roles 117
- Creating a User Role 118
- Adding Role Attributes 119
- Defining Attribute Tags 120
- AccessReject(); 121
- 'default_value'))) 123
- Network Access Servers 124
- Motorola (RFC 3576 support) 126
- Ruckus Networks 126
- Trendnet 126
- Xirrus 126
- Web Logins 128
- Creating a Web Login Page 129
- NAS Redirect Parameters 134
- NAS Login Parameters 135
- Using Web Login Parameters 135
- {$extra_fields.wlan} 136
- Solution Implementation 138
- Database Lists 140
- Dictionary 141
- Import Dictionary 142
- Export Dictionary 142
- Reset Dictionary 142
- Creating a New Vendor 143
- Edit Vendor 143
- Delete Vendor 143
- Export Vendor 143
- Vendor-Specific Attributes 144
- Add Attribute Value 145
- Editing Attribute Value 145
- Deleting Attribute Value 146
- PEAP Sample Configuration 152
- Configuring an LDAP EAS 166
- Chapter 6 179
- Operator Profiles 180
- Customizing Forms and Views 185
- Operator Profile Privileges 186
- Managing Operator Profiles 186
- Local Operator Authentication 187
- Viewing All Operator Logins 188
- LDAP Operator Authentication 190
- Advanced LDAP URL Syntax 193
- Viewing the LDAP Server List 193
- Testing Connectivity 194
- Looking Up Sponsor Names 195
- LDAP Translation Rules 196
- Operator Logins Configuration 200
- Operator Password Options 201
- Automatic Logout 202
- Chapter 7 203
- Sponsored Guest Access 204
- Self Provisioned Guest Access 204
- Creating a Guest Account 205
- Managing Guest Accounts 211
- Importing Guest Accounts 216
- Guest Manager Customization 220
- Verification Properties 225
- Basic User Properties 225
- Account Expiration Types 227
- Standard Fields 228
- Standard Forms and Views 228
- Customization of Fields 229
- Creating a Custom Field 230
- Duplicating a Field 231
- Editing a Field 231
- Deleting a Field 231
- Editing Forms and Views 232
- Duplicating Forms and Views 233
- Editing Forms 233
- Form Field Editor 234
- Form Display Properties 235
- Form Validation Properties 245
- 0 => 1 246
- 1 => 100 246
- Editing Views 252
- View Field Editor 253
- Using a Parent Page 258
- Paying for Access 258
- Editing Receipt Actions 262
- Editing Login Page Properties 267
- Customizing Print Templates 271
- Creating New Print Templates 272
- Print Template Wizard 273
- Create the Print Template 276
- MAC Address Formats 279
- Managing Devices 280
- Activating a Device 283
- Editing a Device 283
- MAC Creation Modes 285
- Add or enable mac 288
- Figure 35 RADIUS Role Editor 291
- Importing MAC Devices 292
- Advanced MAC Features 293
- Active Sessions Management 294
- Session States 295
- Sending Multiple SMS Alerts 301
- SMS Services 302
- Sending an SMS 304
- About SMS Credits 305
- SMS Receipt Options 306
- Customize SMS Receipt 308
- SMS Receipt Fields 309
- SMTP Services 310
- Email Receipt Options 312
- SMTP Receipt Fields 314
- Chapter 8 317
- Running and Managing Reports 318
- Edit a report 319
- Delete a Report 320
- Duplicate a Report 320
- Permissions 320
- Exporting Report Definitions 322
- Importing report Definitions 323
- Resetting Report Definitions 323
- About Custom Reports 324
- 600 * 8) 325
- <?= -date("Z") 326
- Report Type 328
- Report Parameters 329
- Data Source 332
- Select Fields 333
- Source Filters 335
- Classification Groups 337
- Statistics and Metrics 339
- Output Series 342
- Output Series Fields 343
- Output Filters 344
- Presentation Options 346
- Table Presentations 347
- Text Presentations 347
- Creating Reports 348
- Creating the Report – Step 1 349
- Creating the Report – Step 2 349
- Creating Sample Reports 350
- Report Troubleshooting 355
- Troubleshooting Tips 356
- Chapter 9 357
- 1000 Mbit, full duplex 363
- MGT eth0 1 364
- LAN eth1 11 364
- Managing Static Routes 365
- Creating a VLAN Interface 366
- Managing VLAN Interfaces 367
- Active (up) 368
- Active with default gateway 368
- Inactive (down) 368
- Login Access Control 369
- Network Diagnostic Tools 370
- Network Hosts 374
- HTTP Proxy Configuration 375
- SNMP Configuration 375
- Supported MIBs 377
- SMTP Configuration 378
- SSL Certificate 379
- Installing an SSL Certificate 380
- Backup and Restore 383
- Scheduling Automatic Backups 384
- Restoring a Backup 386
- Content Manager 387
- Uploading Content 388
- Security Manager 389
- Performing a Security Audit 390
- Notifications 391
- OS Updates 392
- Plugin Manager 393
- Managing Subscriptions 394
- Viewing Available Plugins 394
- Configuring Plugins 396
- Server Time 399
- 0.pool.ntp.org 400
- 1.pool.ntp.org 400
- 2.pool.ntp.org 400
- System Control 401
- Managing Data Retention 404
- System Information 408
- Adding Disk Space 409
- System Log 411
- Exporting the System Log 412
- Viewing the Application Log 412
- Searching the Application Log 413
- Exporting the Application Log 413
- Chapter 10 415
- Manage Hotspot Sign-up 416
- Hotspot Plans 417
- Modifying an Existing Plan 418
- Creating New Plans 419
- Managing Customer Information 420
- Managing Hotspot Invoice 420
- Customize User Interface 421
- Customize Page One 422
- Customize Page Two 422
- View Hotspot User Interface 424
- Chapter 11 425
- Network Architecture 426
- Deploying an SSL Certificate 427
- Normal Cluster Operation 427
- Failure Detection 427
- Database Replication 427
- Configuration Replication 428
- Primary Node Failure 429
- Secondary Node Failure 429
- Cluster Status 430
- Cluster Setup 431
- Prepare Primary Node 432
- Prepare Secondary Node 434
- Cluster Initialization 434
- Cluster Deployment 435
- Cluster Maintenance 436
- Updating Plugins 438
- Destroying a Cluster 438
- Cluster Troubleshooting 439
- Chapter 12 441
- Standard HTML Styles 442
- Smarty Template Syntax 443
- Comments 444
- Variable Assignment 444
- Conditional Text Blocks 444
- Script Blocks 444
- Repeated Text Blocks 444
- Foreach Text Blocks 445
- Modifiers 445
- Predefined Template Functions 446
- Advanced Developer Reference 450
- {nwa_plugin …} 452
- Date/Time Format Syntax 454
- Format Result 456
- Programmer’s Reference 457
- NwaParseCsv 459
- NwaParseXml 460
- NwaPasswordByComplexity 460
- NwaSmsIsValidPhoneNumber 460
- NwaStrongPassword 460
- NwaVLookup 461
- NwaWordsPassword 461
- GuestManager Standard Fields 461
- Field Description 462
- Hotspot Standard Fields 469
- SMS Services Standard Fields 470
- SMTP Services Standard Fields 470
- Format Picture String Symbols 472
- Function Description 477
- AccessReject() 479
- EnableDebug() 480
- DisableDebug() 480
- GetAttr() 480
- ShowAttr() 480
- MacAddr() 480
- MacEqual() 481
- MacAddrConvert() 481
- GetTraffic() 481
- GetTime() 481
- GetSessions() 482
- GetCallingStationTraffic() 482
- GetUserTraffic() 483
- GetIpAddressTraffic() 483
- GetCallingStationTime() 483
- GetUserTime() 483
- GetIpAddressTime() 483
- GetCallingStationSessions() 484
- GetUserSessions() 484
- GetIpAddressSessions() 484
- GetUserActiveSessions() 484
- GetCurrentSession() 484
- GetUserCurrentSession() 485
- GetIpAddressCurrentSession() 485
- GetUserStationCount() 486
- GetSessionTimeRemaining() 486
- ChangeToRole() 486
- RADIUS Server Options 487
- Value Description 488
- Security Configuration 489
- Proxy Configuration 489
- SNMP Query Configuration 490
- Thread Pool Configuration 490
- EAP Module Configuration 492
- LDAP Module Configuration 495
- Setting Description 496
- Rewrite Module Configuration 498
- Authentication Attributes 499
- Regular Expressions 501
- Regex Matches 502
- Chapter 13 503
- Numerics 507
Powiązane produkty i podręczniki dla Oprogramowanie Dell PowerConnect W-Clearpass 100 Software
(52 strony)© 2020, manymanuals.pl. Wszelkie prawa zastrzeżone. | 0.082 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Komentarze do niniejszej Instrukcji