Configuring a Web authentication server

Restrictions and guidelines

Specify the IP address of a Layer 3 interface on the device that is routable to the Web client as the listening IP address of the Web authentication server. As a best practice, use the IP address of a loopback interface rather than that of a Layer 3 interface. A loopback interface has the following advantages:

Procedure

  1. Enter system view.

    system-view

  2. Create a Web authentication server and enter its view.

    web-auth server server-name

  3. Specify the IP address and port number of the Web authentication server.

    ip ipv4-address port port-number

    The port number of the Web authentication server must be the same as the listening port of the local portal Web service.

  4. Specify the redirection URL for the Web authentication server.

    url url-string

    The IP address and port number in the specified redirection URL must be the same as those of the Web authentication server.

  5. (Optional.) Add parameters to the redirection URL of the Web authentication server.

    url-parameter parameter-name { original-url | source-address | source-mac | value expression }

    By default, no parameters are added to the redirection URL of a Web authentication server.