Skip to content

Support



Juniper was the first North American IP routing vendor to achieve the prestigious TL 9000 certification by the Quality of Excellence for Suppliers of Telecommunications (QuEST) Forum in the router category, for design, development, provision and service and support.



What is J-Care?

It's the world-class service and support that you expect from a company that delivers the industry's best infrastructure and security products. With J-Care, you now have the confidence knowing that Juniper will do our part to keep you on top of the world!


Filtering 802.1X Supplicants Using Vendor-Specific Attributes (CLI Procedure)

EX-series switches support a new set of filtering attributes that are used in conjunction with 802.1X authentication to further define access to a LAN.

The following procedure uses FreeRADIUS to configure a RADIUS server. For specifics on configuring your server, consult the accompanying AAA documentation that was included with your server.

This topic includes the following tasks:

  1. Load the Juniper Dictionary

Load the Juniper Dictionary

Load the Juniper Dictionary containing the set of filtering attributes: called Juniper-Switching-Filter, attribute ID 48.

  1. Load the Juniper Dictionary:
    [root@freeradius]# cd usr/share/freeradius/dictionary.juniper 
    #  dictionary.juniper
#
# Version:      $Id: dictionary.juniper,v 1.2.6.1 2005/11/30 22:17:25 aland Exp
$
#  VENDOR          Juniper                         2636
BEGIN-VENDOR    Juniper
ATTRIBUTE       Juniper-Local-User-Name                 1       string
ATTRIBUTE       Juniper-Allow-Commands                  2       string
ATTRIBUTE       Juniper-Deny-Commands                   3       string
ATTRIBUTE       Juniper-Allow-Configuration             4       string
ATTRIBUTE       Juniper-Deny-Configuration              5       string
ATTRIBUTE       Juniper-Firewall-Filter                 44      string
ATTRIBUTE       Juniper-Switching-Filter                48      string  <—
  2. If the attribute Juniper-Switching-Filter is not displayed in the dictionary, you can copy and paste it under the dictionary, and close the file:
    [root@freeradius]# cd usr/share/freeradius/dictionary.juniper 
    #  dictionary.juniper
#
# Version:      $Id: dictionary.juniper,v 1.2.6.1 2005/11/30 22:17:25 aland Exp
$
#  VENDOR          Juniper                         2636
BEGIN-VENDOR    Juniper
ATTRIBUTE       Juniper-Local-User-Name                 1       string
ATTRIBUTE       Juniper-Allow-Commands                  2       string
ATTRIBUTE       Juniper-Deny-Commands                   3       string
ATTRIBUTE       Juniper-Allow-Configuration             4       string
ATTRIBUTE       Juniper-Deny-Configuration              5       string
ATTRIBUTE       Juniper-Firewall-Filter                 44      string
copy and paste the entire string here                                     <—