Example for Configuring Layer 2 Portal Authentication

Latest reply: Dec 17, 2016 16:01:47 913 1 0 0

Example for Configuring Layer 2 Portal Authentication


This example applies to all AR models of all versions.

NOTE:The 4GE-2S, 4ES2G-S, 4ES2GP-S, and 9ES2 cards do not support NAC.

Networking Requirements

As shown in Figure 1 an enterprise needs to deploy an identity authentication system in reception rooms to implement access control on guests who attempt to connect to the enterprise network, ensuring that only authenticated users can access the network. Because the reception rooms have medium security requirements, you do not need to deploy too many authentication points. It is required that the authentication control point be deployed on the aggregation device to facilitate maintenance.

Portal authentication features flexible deployment and is applicable to moving users. The aggregation router and guests' terminals communicate at Layer 2. Therefore, you can deploy Layer 2 Portal authentication on the aggregation router to implement access control on guests who attempt to connect to the enterprise network. The RADIUS server and Portal server are integrated on the same device.

Figure 14-8  Networking diagram for configuring Layer 2 Portal authentication


  1. Configure Router.

  2. Verify the configuration.

    • The Portal authentication page is pushed to a guest when the guest attempts to access the network. After the guest enters the correct user name and password, the requested web page is automatically displayed.
    • After the authentication succeeds, run the display access-user command. Information about online users is displayed.

Configuration Notes

Before performing the configuration, ensure that devices on the network can communicate.

The RADIUS authentication shared key, RADIUS accounting shared key, and Portal shared key must be kept consistent on the router and server.

  • x
  • convention:

Created Dec 17, 2016 16:01:47 Helpful(0) Helpful(0)

thank you
  • x
  • convention:


You need to log in to reply to the post Login | Register

Notice Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " Privacy."
If the attachment button is not available, update the Adobe Flash Player to the latest version!
Login and enjoy all the member benefits

Login and enjoy all the member benefits