xStack
®
DGS-3620 Series Layer 3 Managed Stackable Gigabit Switch Web UI Reference Guide
356
Figure 8-41 Compound Authentication Settings window
The fields that can be configured are described below:
Parameter
Description
Authorization Attributes
State
Click the radio buttons to enable of disable the Authorization Attributes State.
Authentication Server
Failover
Click the radio buttons to configure the authentication server failover function.
Block
(default setting) - The client is always regarded as un-authenticated.
Local
- The switch will resort to using the local database to authenticate the
client. If the client fails on local authentication, the client is regarded as un-
authenticated, otherwise, it authenticated.
Permit
- The client is always regarded as authenticated. If guest VLAN is
enabled, clients will stay on the guest VLAN, otherwise, they will stay on the
original VLAN.
From Port / To Port
Use the drop-down menus to select a range of ports to be enabled as
compound authentication ports.
Authentication Methods
The compound authentication method options include:
None
,
Any (MAC,
802.1X, JWAC or WAC)
,
802.1X+IMPB
,
IMPB+JWAC
,
IMPB+WAC
, and
MAC+IMPB
.
None
- all compound authentication methods are disabled.
Any (MAC, 802.1X, JWAC or WAC)
- if any of the authentication methods
pass, then access will be granted. In this mode, MAC, 802.1X, JWAC and
WAC can be enabled on a port at the same time. In Any (MAC, 802.1X,
JWAC or WAC) mode, whether an individual security module is active on a
port depends on its system state.
802.1X+IMPB
- 802.1X will be verified first, and then IMPB will be verified.
Both authentication methods need to be passed.
IMPB+JWAC
– JWAC will be verified first, and then IMPB will be verified.
Summary of Contents for xStack DGS-3620-52P
Page 1: ......