To improve the network active defense ability with intelligence defense, prevention, and authentication methods in campus network. the concept of intelligent active defense system is proposed based on web access control and 802.1X admission control, the two technologies have their own disadvantages whatever web technology or 802.1X access control, but if we develop their own advantages of web and 802.1X , we will get greater convenience not only easy to deploy but also improve network security. after the active defense system architecture is given and its functional module and authentication flowchart is described in detail, some methods and suggestions are provided for the application deployment and specific problems on network security management.