Defining Port-Based Authentication (802.1X)
61
■
Enable Guest VLAN
— Provides limited network access to authorized
ports. If a port is denied network access via port-based authorization,
but the Guest VLAN is enabled, the port receives limited network
access. For example, a network administrator can use Guest VLANs to
deny network access via port-based authentication, but grant Internet
access to unauthorized users.
■
Guest VLAN ID
— Specifies the guest VLAN ID.
802.1X Port Settings
■
Admin Port Control
— Specifies the admin port authorization state.
■
Auto
— Enables port based authentication on the device. The
interface moves between an authorized or unauthorized state
based on the authentication exchange between the device and the
client.
■
Force Authorized
— Places the interface into an authorized state
without being authenticated. The interface re-sends and receives
normal traffic without client port based authentication.
■
Force Unauthorized
— Denies the selected interface system access
by moving the interface into unauthorized state. The device cannot
provide authentication services to the client through the interface.
■
Guest VLAN
— Specifies whether the Guest VLAN is enabled on the
port. The possible field values are:
■
Enable
— Enables using a Guest VLAN for unauthorized ports. If a
Guest VLAN is enabled, the unauthorized port automatically joins
the VLAN selected from the Guest VLAN ID dropdown list.
■
Disable
— Disables Guest VLAN on the port. This is the default.
■
Periodic Reauthentication
— Enables periodic reauthentication on
the port.
■
Enable
— Enables the periodic reauthentication on the port.
■
Disable
— Disables the periodic reauthentication on the port.
■
Reauthentication Period
— Defines the time span (in seconds) in
which the selected port is reauthenticated. The field default is
3600
seconds.
2
Define the fields.
3
Click
. The
802.1X Settings
are enabled, and the device is updated.