资源描述
Click to edit Master title style,Click to edit Master text styles,Second level,Third level,*,Click to edit Master title style,Click to edit Master text styles,Second level,Third level,Fourth level,Fifth level,F5 Networks,*,Click to edit Master title style,Click to edit Master text styles,Second level,Third level,Fourth level,Fifth level,*,APM,安装与配置,软硬件安装要求,基本功能安装配置(,Wizard,Customed),高级功能安装配置,附录:,Radius,服务器相关配置,目 录,软硬件安装要求,版本,TMOS10.1,之上,激活,APM License,(不激活可以有,5 user,的试用许可),目前支持的硬件平台:,LTM3600,,,LTM3900,LTM6900,<M8900,其它测试平台可修改,b db Provision.Enforce false,并且在,bigip_sys.conf,文件中加入,provision apm ,参数激活,APM,功能。,相关环境准备:,Windows AD Server,Internet Authentication Server,。,APM,Provisioning,软硬件安装要求,基本功能安装配置(,Wizard,Customized),高级功能安装配置,附录:,Radius,服务器相关配置,目 录,APM,配置,-Wizard,选择配置类型:,Network Access;Web Aplication,APM,配置,-Wizard,APM,配置,-Wizard,APM,配置,-Wizard,APM,配置,-Wizard,APM,配置,-Wizard,APM,配置,-Wizard,APM,配置,-Wizard,APM,配置,-Wizard,APM,配置,-Wizard,软硬件安装要求,基本功能安装配置(,Wizard,Customized),高级功能安装配置,附录:,Radius,服务器相关配置,目 录,Edge Gateway:Network Access/1,Edge Gateway:Network Access/2,Edge Gateway:Network Access/3,Edge Gateway:Network Access/4,Edge Gateway:Network Access/5,Edge Gateway:Network Access/6,Edge Gateway:Network Access/7,Edge Gateway:Network Access/8,Edge Gateway:Network Access/9,Edge Gateway:Network Access/10,软硬件安装要求,基本功能安装配置(,Wizard,Customized),高级功能安装配置,附录:,AD/IAS,服务器相关配置,目 录,Lab Layout,F5lab Layout,AD Server,DNS Server,Radius Server,Web Server,F5 Intranet,Internet,F,NTP Server,Windows XP,Windows XP,Active directory,配置,在,PDC,上启用,NTP,Server,:正确配置,Windows,时间服务,(W32time),使整个域环境中不同设备系统时间保持一致,以满足各种服务要求(,Kerbos,认证等),创建域用户,验证域登录正常。,Windows IAS,配置,(,一),在,windows administrative tools,中选择,internet authentication service,,右键单击,radius clients,添加网络设备的,ip,和,key,。,在,Remote Access Policies,右键单击,Connections to Other Access Servers,and select Properties,,将允许登陆网络设备的用户添加到,policy condition,框中,确保选中下面的,Grant Remote Access Permissions,。,Windows IAS,配置,(,二),点击,Edit Profile,,在,Authentication,页面中选中,Unencrypted authentication(PAP,SPAP),MS-CHAP,和,MS-CHAP-v2,,在,Encryption,页面中选中,No Encryption,。,Windows IAS,配置,(,三),Radius,用户(域用户)在,Active directory user,必须有,remote access,的权限(,Dial in),否则,Radius,访问会被拒绝。缺省设置情况下,,域用户的,remote access,权限是关闭的。,Windows IAS,配置,(,四),Windows IAS,配置,(,五),如果,domain user,没有,remote access,权限,那么在,APM system log,以及域控制器的,event Viewer,中都会有相应记录。,
展开阅读全文