- Community Home
- >
- Networking
- >
- Legacy
- >
- Switches, Hubs, Modems
- >
- MAC Access to switches, HELP!
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-11-2005 11:41 PM
тАО07-11-2005 11:41 PM
MAC Access to switches, HELP!
I work at a large college, We have a problem of unauthorised equipment being plugged into the network, I am trying to find a way of restricting access to the network to only certain MAC Addresses, Is there a way to do this using HP PRocurve equipment.
We have a mixture of 9300 at the Core and 5300, 4100, 2500 and 2600 at the edge.
Any idea's would be much appreciated,
Cheers
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-12-2005 07:56 AM
тАО07-12-2005 07:56 AM
Re: MAC Access to switches, HELP!
There are different ways to authenticate clients. In the past Mac adresses where entered manually on the portconfiguration. Very time consuming if you move and change clients. Authenticating Mac adresses against a central Radius server like MS IAS is supported on the 2600 and 5300 series.
A better way is to use 802.1x. All the edge devices you have support it.
types of authentication per platform
5300 series:802.1x, web-logon, Mac-logon
2600 series:802.1x, web-logon, Mac-logon
4100 series:802.1x
2500 series:802.1x
Functionality is described in the security manuals which you can find on www.procurve.com under the section tech support.
suggestion: approach someone who has experience on this subject, it saves you time.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-12-2005 06:59 PM
тАО07-12-2005 06:59 PM
Re: MAC Access to switches, HELP!
Also, Do you need the IDM portion of PCM+ to facilitate this?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-12-2005 11:31 PM
тАО07-12-2005 11:31 PM
Re: MAC Access to switches, HELP!
about radious server read here
http://www.gnu.org/software/radius/radius.html
For download free radious server click here
http://www.freeradius.org/
This article can help you about radiuos and procurve
http://www.techworld.com/security/news/index.cfm?newsid=2395&page=1&pagepos=3
Antonio Vigliotti
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-12-2005 11:35 PM
тАО07-12-2005 11:35 PM
Re: MAC Access to switches, HELP!
Have one more Question....
I have been playing with MAC based authentication on an HP 2626-PWR. I have the security guide for this switch and i am running the latest software (H_08_69), it says to use the following commands :
aaa port-access mac-based Etc..
The switch does not recognise the 'Mac-based' part , it will only let me enter :
aaa port-access Authenticator
or
aaa port-access supplicant
Does this mean that the 2600 switch will only support 802.1x and not mac/web authentication?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-13-2005 09:48 PM
тАО07-13-2005 09:48 PM
Re: MAC Access to switches, HELP!
Still struggling to setup the radius side of it though. I have got the switch to block everything at he mo, but i can't get it to authenticate with my radius server.
I am using MS IAS as the radius server. Anyone know any useful links or idea's on how to set up microsoft IAS for MAC authentication???
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-13-2005 10:12 PM
тАО07-13-2005 10:12 PM
Re: MAC Access to switches, HELP!
you can find some information abou ms ias here
http://support.microsoft.com/default.aspx?scid=kb;en-us;830853
http://support.microsoft.com/default.aspx?scid=kb;en-us;842439
http://support.microsoft.com/default.aspx?scid=kb;en-us;836992
Antonio Vigliotti
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-18-2005 06:38 PM
тАО07-18-2005 06:38 PM
Re: MAC Access to switches, HELP!
The actual environment is going to be fairly static, with not many changes to machines etc. so hopefully this should do the trick!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-28-2005 07:38 PM
тАО07-28-2005 07:38 PM
Re: MAC Access to switches, HELP!
try to get your hands on the ProCurve Security Training manual. There in the LAB- guide is a detailed description how to configure MS IAS as Radius for the ProCurve devices.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-28-2005 08:45 PM
тАО07-28-2005 08:45 PM
Re: MAC Access to switches, HELP!
You mention the "ProCurve Security Training manual". Where is that avaiable? Or do you have to go on a course to get it?