This profile has been created for phones that support an authentication protocol and assumes that the phone does not support LLDP and is provisioned using DHCP options.
This is a template for configuring network parameters for 802.1X authenticated devices. The module is triggered through successful authentication or unauthentication of the device.
#*********************************************** # Last Updated: April 11, 2007 # Tested Phones: Avaya 4610, 4620, 4625 # Requirements: 802.1X capable devices, netlogin configured and enabled on deployment ports #*********************************************** # @MetaDataStart # @ScriptDescription "This is a template for configuring network parameters for 802.1X authenticated devices. The module is triggered through successful authentication of the device. The following network side configuration is done: QOS assignment and enables DOS protection. When used with IP phones, phone provisioning is done through DHCP options." # @Description "VLAN name to add to port" set var vlan1 voiceavaya # @VariableFieldLabel "Set QoS Profile (yes or no)" set var setQuality yes # @Description "QoS Profile (0-100)" set var lowbw 50 # @VariableFieldLabel "QoS MAX Bandwidth (0-100)" set var highbw 100 # @VariableFieldLabel "Enable Denial of Service Protection (yes or no)" set var dosprotection yes # @MetaDataEnd ################################## # Start of USER-AUTHENTICATE block ################################## if (!$match($EVENT.NAME,USER-AUTHENTICATED)) then ############ #QoS Profile ############ # Adds a QOS profile to the port if (!$match($setQuality,yes)) then create log message Config_QOS configure port $EVENT.USER_PORT qosprofile qp7 configure qosprofile qp7 minbw $lowbw maxbw $highbw ports $EVENT.USER_PORT endif # ######################## #Security Configurations ######################## create log message Applying_Security_Limits # enables Denial of Service Protection for the port if (!$match($dosprotection,yes)) then enable dos-protect create log message DOS_enabled endif # endif ################################ # End of USER-AUTHENTICATE block ################################ # # #################################### # Start of USER-UNAUTHENTICATE block #################################### if (!$match($EVENT.NAME,USER-UNAUTHENTICATED)) then create log message Starting_8021x_Generic_UNATUH_Module_Config if (!$match($setQuality,yes)) then create log message UNConfig_QOS unconfig qosprofile ports $EVENT.USER_PORT endif unconfig inline-power operator-limit ports $EVENT.USER_PORT endif ################################## # End of USER-UNAUTHENTICATE block ################################## create log message End_802_1x_Generic_Module_Config