Associating the XML API Server to a AAA profile

在你定义XML可扩展标记语言。XML是一种标记语言，它定义了一组以人为可读且可读的格式编码文档的规则。API应用程序接口。指的是一组功能，过程，协议和工具，使用户能够构建应用程序软件。服务器配置文件将其关联到适当的AAAAuthentication, Authorization, and Accounting. AAA is a security framework to authenticate users, authorize the type of access based on user credentials, and record authentication events and information about the network access and network resource consumption.轮廓。If theXML可扩展标记语言。XML是一种标记语言，它定义了一组以人为可读且可读的格式编码文档的规则。API应用程序接口。指的是一组功能，过程，协议和工具，使用户能够构建应用程序软件。server is not correctly configured in the appropriate profile,Mobility Masterwill respond with the客户未经授权错误信息。你可以加XML可扩展标记语言。XML是一种标记语言，它定义了一组以人为可读且可读的格式编码文档的规则。API应用程序接口。指的是一组功能，过程，协议和工具，使用户能够构建应用程序软件。server references to the followingAAAAuthentication, Authorization, and Accounting. AAA is a security framework to authenticate users, authorize the type of access based on user credentials, and record authentication events and information about the network access and network resource consumption.配置文件根据your requirement:

Creating a AAA Profile

Create aAAAAuthentication, Authorization, and Accounting. AAA is a security framework to authenticate users, authorize the type of access based on user credentials, and record authentication events and information about the network access and network resource consumption.profile for the wireless users and associate theXML可扩展标记语言。XML是一种标记语言，它定义了一组以人为可读且可读的格式编码文档的规则。API应用程序接口。指的是一组功能，过程，协议和工具，使用户能够构建应用程序软件。server:

(host) [mynode] (config) #aaa profile wirelessusers

（主机） ^[myNode]（AAA配置文件“无线用户”）＃xml-api-server 10.11.12.13

(host) ^[mynode] (AAA Profile "wirelessusers") #write memory

Verify the association of theXML可扩展标记语言。XML是一种标记语言，它定义了一组以人为可读且可读的格式编码文档的规则。API应用程序接口。指的是一组功能，过程，协议和工具，使用户能够构建应用程序软件。server to theAAAAuthentication, Authorization, and Accounting. AAA is a security framework to authenticate users, authorize the type of access based on user credentials, and record authentication events and information about the network access and network resource consumption.轮廓：

(host) [mynode] #show aaa profile wirelessusers

AAA配置文件“无线用户” ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ 初始角色登录MAC MAC身份验证配置文件N/A MAC身份验证默认角色guest MAC Authentication Server组默认802.1X身份验证配置文件N/A 802.1X身份验证默认默认角色访问guest 802.1x身份验证服务器组N/a从CPPM禁用CPPM的下载台DHCP选项12禁用L2身份验证通过禁用的多个服务器会计失败的无线用户无线用户的最大ipv4 n/a max ipv4XMLAPIserver 10.11.12.13RFC 3576服务器N/A用户派生规则N/A有线启用了启用的设备类型类型启用启用启用DHCP DHCP禁用PAN FIREWALL INTEMENTAIN

对于无线用户，将AAAAuthentication, Authorization, and Accounting. AAA is a security framework to authenticate users, authorize the type of access based on user credentials, and record authentication events and information about the network access and network resource consumption.profile to the virtual AP profile:

（主机）[myNode]（config）#wlan Virtual-Ap Wireless-vap

(host) ^[mynode] (Virtual AP profile "wireless-vap") #aaa-profile wirelessusers

（主机） ^[myNode]（虚拟AP配置文件“无线vap”）#write内存

Verify the association of theAAAAuthentication, Authorization, and Accounting. AAA is a security framework to authenticate users, authorize the type of access based on user credentials, and record authentication events and information about the network access and network resource consumption.profile to the virtual AP profile:

(host) [mynode] #show wlan virtual-ap wireless-vap

Virtual AP profile "wireless-vap"

---------------------------------

Parameter Value Set

--------- ----- ---

AAA配置文件无线用户

802.11K Profile default

热点2.0个人资料不适用

Virtual AP enable Enabled

vlan n/a

Forward mode tunnel

SSID Profile default

Allowed band all

乐队转向禁用

蜂窝交接辅助残疾

Openflow Enable Disabled

Steering Mode prefer-5ghz

Dynamic Multicast Optimization (DMO) Disabled

Dynamic Multicast Optimization (DMO) Threshold 6

Drop Broadcast and Multicast Disabled

Convert Broadcast ARP requests to unicast Enabled

Authentication Failure Blacklist Time 3600 sec

黑名单时间3600秒

Deny inter user traffic Disabled

Deny time range N/A

DoS Prevention Disabled

HA Discovery on-association Enabled

Mobile IP Enabled

Preserve Client VLAN Disabled

Remote-AP Operation standard

Station Blacklisting Enabled

Strict Compliance Disabled

VLAN Mobility Disabled

WAN Operation mode always

FDB Update on Assoc Disabled

WMM Traffic Management Profile N/A

Anyspot profile N/A

Create aAAAAuthentication, Authorization, and Accounting. AAA is a security framework to authenticate users, authorize the type of access based on user credentials, and record authentication events and information about the network access and network resource consumption.profile for the wired users and associate theXML可扩展标记语言。XML是一种标记语言，它定义了一组以人为可读且可读的格式编码文档的规则。API应用程序接口。指的是一组功能，过程，协议和工具，使用户能够构建应用程序软件。server:

(host) [mynode] (config) #aaa profile wiredusers

(host) ^[mynode] (AAA Profile "wiredusers") #xml-api-server 10.11.12.13

(host) ^[mynode] (AAA Profile "wiredusers") #write memory

Associate the wiredAAAAuthentication, Authorization, and Accounting. AAA is a security framework to authenticate users, authorize the type of access based on user credentials, and record authentication events and information about the network access and network resource consumption.有线身份验证配置文件的配置文件：

(host) [mynode] (config) #aaa authentication wired

（主机） ^[myNode]（有线身份验证配置文件）#profile diredusers

(host) ^[mynode] (Wired Authentication Profile) #write memory

Verify the association of the wiredAAAAuthentication, Authorization, and Accounting. AAA is a security framework to authenticate users, authorize the type of access based on user credentials, and record authentication events and information about the network access and network resource consumption.有线身份验证配置文件的配置文件：

（主机）[myNode] #show aaa Authentication有线

Wired Authentication Profile

----------------------------

Parameter Value

--------- -----

AAA Profilewiredusers

For unknown wired users, associate theXML可扩展标记语言。XML是一种标记语言，它定义了一组以人为可读且可读的格式编码文档的规则。API应用程序接口。指的是一组功能，过程，协议和工具，使用户能够构建应用程序软件。server to thedefault-xml-apiAAAAuthentication, Authorization, and Accounting. AAA is a security framework to authenticate users, authorize the type of access based on user credentials, and record authentication events and information about the network access and network resource consumption.轮廓。

Thedefault-xml-apiAAAAuthentication, Authorization, and Accounting. AAA is a security framework to authenticate users, authorize the type of access based on user credentials, and record authentication events and information about the network access and network resource consumption.profile is used only to add or authenticate new users.

Associate theXML可扩展标记语言。XML是一种标记语言，它定义了一组以人为可读且可读的格式编码文档的规则。API应用程序接口。指的是一组功能，过程，协议和工具，使用户能够构建应用程序软件。server to thedefault-xml-apiAAAAuthentication, Authorization, and Accounting. AAA is a security framework to authenticate users, authorize the type of access based on user credentials, and record authentication events and information about the network access and network resource consumption.轮廓：

(host) [mynode] (config) #aaa profile default-xml-api

(host) ^[mynode] (AAA Profile "default-xml-api") #xml-api-server 10.11.12.13

（主机） ^[myNode]（AAA配置文件“ default-xml-api”）#write内存

Verify the association of theXML可扩展标记语言。XML是一种标记语言，它定义了一组以人为可读且可读的格式编码文档的规则。API应用程序接口。指的是一组功能，过程，协议和工具，使用户能够构建应用程序软件。server to thedefault-xml-apiAAAAuthentication, Authorization, and Accounting. AAA is a security framework to authenticate users, authorize the type of access based on user credentials, and record authentication events and information about the network access and network resource consumption.轮廓：

(host) [mynode] #show aaa profile default-xml-api

AAA Profile "default-xml-api" (Predefined (changed))

----------------------------------------------------

Parameter Value Set

--------- ----- ---

Initial role logon

MAC身份验证配置文件N/A

MAC身份验证默认角色来宾

MAC Authentication Server Group default

802.1X Authentication Profile N/A

802.1X Authentication Default Role guest

802.1X Authentication Server Group N/A

Download Role from CPPM Disabled

Set username from dhcp option 12 Disabled

L2 Authentication Fail Through Disabled

多个服务器会计

User idle timeout N/A

Max IPv4 for wireless user 2

半径会计服务器组N/A

RADIUS Interim Accounting Disabled

XMLAPIserver 10.11.12.13

RFC 3576 server N/A

User derivation rules N/A

连接到无线漫游启用

启用了设备类型分类

Enforce DHCP Disabled

PAN Firewall Integration Disabled

打开SSID半径会计

YourMobility Master现在准备接收API应用程序接口。指的是一组功能，过程，协议和工具，使用户能够构建应用程序软件。来自XML可扩展标记语言。XML是一种标记语言，它定义了一组以人为可读且可读的格式编码文档的规则。API应用程序接口。指的是一组功能，过程，协议和工具，使用户能够构建应用程序软件。server.

设置圈养门户配置文件

设置一个Captive PortalA captive portal is a web page that allows the users to authenticate and sign in before connecting to a public-access network. Captive portals are typically used by business centers, airports, hotel lobbies, coffee shops, and other venues that offer free Wi-Fi hotspots for the guest users.profile with a login page that will redirect users to the externalCaptive PortalA captive portal is a web page that allows the users to authenticate and sign in before connecting to a public-access network. Captive portals are typically used by business centers, airports, hotel lobbies, coffee shops, and other venues that offer free Wi-Fi hotspots for the guest users.server:

（主机）[myNode]（config）#AAA身份验证圈式置身圈式 - portal-auth

(host) ^[mynode] (Captive Portal Authentication Profile "captive-portal-auth") #default-role authenticated

(host) (Captive Portal Authentication Profile "captive-portal-auth") #login-page https://10.11.12.13/cgi-bin/login.pl

(host) (Captive Portal Authentication Profile "captive-portal-auth") #switch-in-redirection-url

(host) (Captive Portal Authentication Profile "captive-portal-auth") #write memory

The登录页https://10.11.12.13/cgin-bin/login.pl是出于插图目的login.plis a Perl script on the external server that handles the externalcaptive portalA captive portal is a web page that allows the users to authenticate and sign in before connecting to a public-access network. Captive portals are typically used by business centers, airports, hotel lobbies, coffee shops, and other venues that offer free Wi-Fi hotspots for the guest users..

Associating the Captive Portal Profile to an Initial Role

Associate theCaptive PortalA captive portal is a web page that allows the users to authenticate and sign in before connecting to a public-access network. Captive portals are typically used by business centers, airports, hotel lobbies, coffee shops, and other venues that offer free Wi-Fi hotspots for the guest users.profile to the logon role:

（主机）[myNode]（config）＃用户 - 杆登录

（主机） ^[myNode]（config-submode）＃gaintive-portal captive-portal-auth

(host) ^[mynode] (config-submode)#session-acl captiveportal

（主机） ^[myNode]（config-submode）#write内存

为外部创建一个别名Captive PortalA captive portal is a web page that allows the users to authenticate and sign in before connecting to a public-access network. Captive portals are typically used by business centers, airports, hotel lobbies, coffee shops, and other venues that offer free Wi-Fi hotspots for the guest users.server:

（主机）[myNode]（config）#netDestination xcp

(host) ^[mynode] (config-submode)#host 10.11.12.13

（主机） ^[myNode]（config-submode）#write内存

You can either create a newACLAccess Control List. ACL is a common way of restricting certain types of traffic on a physical port.or append specific rules to an existingACLsAccess Control List. ACL is a common way of restricting certain types of traffic on a physical port.. Create sessionACLAccess Control List. ACL is a common way of restricting certain types of traffic on a physical port.for the logon role:

（主机）[myNode]（config）#ip access-list会话captiveportal

(host) ^[mynode] (config-submode)#user alias xCP svc-https permit

（主机） ^[myNode]（config-submode）#user别名XCP SVC-HTTP许可证

（主机） ^[myNode]（config-submode）#write内存