Chapter 4
Configuration Using the Web-based Utility
Business Series Smart Gigabit Ethernet Switch
Security
Security > 802.1x Settings
The
802.1x Settings
screen is used to configure a port’s
802.1x authentication settings.
Security > 802.1x Settings
Port-based authentication enables authenticating system
users on a per-port basis via an external server. Only
authenticated and approved system users can transmit
and receive data. Ports are authenticated via a RADIUS
server using the Extensible Authentication Protocol (EAP).
Parameters
Enable 80.x
Select the checkbox to enable 802.1x
authentication. The default is not enabled.
Interface
The interface on which to configure 802.1x.
Port
Select the port from the drop-down menu.
Status Port Control
Sets the port authentication mode
top one of the following options:
ForceAuthorized
(Default) Forces the port to grant
access to all clients, either dot1x-aware or otherwise.
ForceUnauthorized
Forces the port to deny access
to all clients, either dot1x-aware or otherwise.
Auto
Requires a dot1x-aware client to be authorized
by the authentication server. Clients that are not dot1x-
aware will be denied access.
Enable Periodic Reauthentication
Select the checkbox
to permit periodic port reauthentication.
Setting Timer
Click this button to open the
Setting Timer
screen to configure ports for 802.1x functionality.
Update
If you click this button, your changes are saved
and appear immediately in the screen’s
Table
section.
•
•
•
•
Table
This part of the
802.1x Settings
screen displays a summary
of the settings that appear in the
Parameters
section of the
screen. If you click
More Details
, the settings described in
the “Setting Timer” section are added to the table.
Click
Save Settings
to apply the changes, or
Cancel
Changes
to cancel the changes.
Setting Timer
The
Setting Timer
screen appears when you click
Setting
Timer
on the
802.1x Settings
screen. You use the
Setting
Timer
screen to configure a port’s 802.1x functionality.
Security > 802.1x Settings > Setting Timer
Port
Displays the port name.
Reauthentication Period
Specifies
the
number
of seconds after which a connected client must be
reauthenticated. The range is
00
to
4949679
seconds. The default value is
600
seconds.
Quiet Period
Specifies the time that a switch port waits
after
Max EAP Requests
is exceeded before attempting
to acquire a new client. The range is
0
to
6
seconds.
The default is
60
seconds.
Resending EAP
Specifies the time that the switch waits
for a response to an EAP request/identity frame from the
client before retransmitting an EAP packet. The range is
to
6
seconds. The default is
0
seconds.
Max EAP Requests
Specifies the maximum number
of times the switch port will retransmit an EAP request
packet to the client before it times out the authentication
session. The range is
to
0
times. The default is
retries.
Supplicant Timeout
Displays the number of seconds that
lapses before EAP requests are resent to the supplicant. The
range is
to
6
seconds. The default is
0
seconds.
Server Timeout
The number of seconds that lapses
before the switch resends a request to the authentication
server The range is
to
6
. The default is
0
seconds.
Click
Save
to save your changes and leave the screen
open. Click
Save & Close
to save your changes and close
the screen. Click
Close
to close the screen without saving
your changes.