xStack® DGS-3620 Series Managed Switch Web UI Reference Guide
359
Figure 8-49 Compound Authentication Settings window
The fields that can be configured are described below:
Parameter
Description
Authorization Attributes
State
Click the radio buttons to enable of disable the Authorization Attributes State.
Authentication Server
Failover
Click the radio buttons to configure the authentication server failover function.
Block
(default setting) - The client is always regarded as un-authenticated.
Local
- The switch will resort to using the local database to authenticate the
client. If the client fails on local authentication, the client is regarded as un-
authenticated, otherwise, it authenticated.
Permit
- The client is always regarded as authenticated. If guest VLAN is
enabled, clients will stay on the guest VLAN, otherwise, they will stay on the
original VLAN.
Unit
Select the unit you want to configure.
From Port / To Port
Use the drop-down menus to select a range of ports to be enabled as
compound authentication ports.
Authentication Methods
The compound authentication method options include:
None
,
Any (MAC,
802.1X, JWAC or WAC)
,
802.1X+IMPB
,
IMPB+JWAC
,
IMPB+WAC
, and
MAC+IMPB
.
None
- all compound authentication methods are disabled.
Any (MAC, 802.1X, JWAC or WAC)
- if any of the authentication methods
pass, then access will be granted. In this mode, MAC, 802.1X, JWAC and
WAC can be enabled on a port at the same time. In Any (MAC, 802.1X,
JWAC or WAC) mode, whether an individual security module is active on a
port depends on its system state.
802.1X+IMPB
- 802.1X will be verified first, and then IMPB will be verified.
Both authentication methods need to be passed.
Summary of Contents for DGS-3620-28PC-SI
Page 1: ......