Configuring portal user synchronization

About portal user synchronization

Once the access device loses communication with a portal authentication server, the portal user information on the access device and that on the portal authentication server might be inconsistent after the communication resumes. To address this problem, the device provides the portal user synchronization feature. This feature is implemented by sending and detecting portal synchronization packets, as follows:

  1. The portal authentication server sends the online user information to the access device in a synchronization packet at the user heartbeat interval.

    The user heartbeat interval is set on the portal authentication server.

  2. Upon receiving the synchronization packet, the access device compares the users carried in the packet with its own user list and performs the following operations:

    • If a user contained in the packet does not exist on the access device, the access device informs the portal authentication server to delete the user. The access device starts the synchronization detection timer (timeout timeout) immediately when a user logs in.

    • If the user does not appear in any synchronization packet within a synchronization detection interval, the access device considers the user does not exist on the portal authentication server and logs the user out.

Restrictions and guidelines

Portal user synchronization requires a portal authentication server to support the portal user heartbeat function. Only the IMC portal authentication server supports the portal user heartbeat function. To implement the portal user synchronization feature, you also need to configure the user heartbeat function on the portal authentication server. Make sure the user heartbeat interval configured on the portal authentication server is not greater than the synchronization detection timeout configured on the access device.

Deleting a portal authentication server on the access device also deletes the user synchronization configuration for the portal authentication server.

Procedure

  1. Enter system view.

    system-view

  2. Enter portal authentication server view.

    portal server server-name

  3. Configure portal user synchronization.

    user-sync timeout timeout

    By default, portal user synchronization is disabled.