Configuring a Web authentication server
Restrictions and guidelines
Specify the IP address of a Layer 3 interface on the device that is routable to the Web client as the listening IP address of the Web authentication server. As a best practice, use the IP address of a loopback interface rather than that of a Layer 3 interface. A loopback interface has the following advantages:
The status of a loopback interface is stable. There will be no authentication page access failures caused by interface failures.
A loopback interface does not forward received packets to any networks, avoiding impact on system performances when there are many network access requests.
Procedure
Enter system view.
system-view
Create a Web authentication server and enter its view.
web-auth server server-name
Specify the IP address and port number of the Web authentication server.
ip ipv4-address port port-number
The port number of the Web authentication server must be the same as the listening port of the local portal Web service.
Specify the redirection URL for the Web authentication server.
url url-string
The IP address and port number in the specified redirection URL must be the same as those of the Web authentication server.
(Optional.) Add parameters to the redirection URL of the Web authentication server.
url-parameter parameter-name { original-url | source-address | source-mac | value expression }
By default, no parameters are added to the redirection URL of a Web authentication server.