xStack® DGS-3620 Series Managed Switch Web UI Reference Guide
353
Japanese Web-based Access Control (JWAC)
JWAC Global Settings
This window is used to enable and configure Japanese Web-based Access Control on the Switch. JWAC and Web
Authentication are mutually exclusive functions. That is, they cannot be enabled at the same time. To use the
JWAC feature, computer users need to pass through two stages of authentication. The first stage is to do the
authentication with the quarantine server and the second stage is the authentication with the Switch. For the
second stage, the authentication is similar to Web Authentication, except that there is no port VLAN membership
change by JWAC after a host passes authentication. JWAC and WAC can share the same RADIUS server.
To view this window, click
Security > Japanese Web-based Access Control (JWAC) > JWAC Global Settings
as shown below:
Figure 8-42 JWAC Global Settings Window
The fields that can be configured are described below:
Parameter
Description
JWAC State
Click the radio buttons to enable or disable JWAC on the Switch.
Virtual IP
Enter the JWAC Virtual IP address that is used to accept authentication requests
from an unauthenticated host. The Virtual IP address of JWAC is used to accept
authentication requests from an unauthenticated host. Only requests sent to this IP
will get a correct response.
NOTE:
This IP does not respond to ARP requests or ICMP packets.
Virtual URL
Enter the Virtual URL used.
UDP Filtering
Use the drop-down menu to enable or disable JWAC UDP Filtering. When UDP
Filtering is
Enabled
, all UDP and ICMP packets except DHCP and DNS packets from
unauthenticated hosts will be dropped.
Port Number (1-65535)
Enter the TCP port that the JWAC Switch listens to and uses to finish the
authenticating process.
Forcible Logout
Use the drop-down menu to enable or disable JWAC Forcible Logout. When Forcible
Logout is
Enabled
, a Ping packet from an authenticated host to the JWAC Switch
with TTL=1 will be regarded as a logout request, and the host will move back to the
unauthenticated state.
Authentication
Protocol
Use the drop-down menu to choose the RADIUS protocol used by JWAC to complete
a RADIUS authentication. The options include
Local
,
EAP
MD5
,
PAP
,
CHAP
,
MS
Summary of Contents for DGS-3620-28PC-EI
Page 1: ......