Overview of 802.1x port security, Ietf rfc support – Brocade Multi-Service IronWare Security Configuration Guide (Supporting R05.6.00) User Manual
Page 314
296
Multi-Service IronWare Security Configuration Guide
53-1003035-02
Overview of 802.1x port security
8
Overview of 802.1x port security
The Multi-Service IronWare software supports the IEEE 802.1x standard for authenticating devices
attached to LAN ports. Using 802.1x port security, you can configure a device to grant access to a
port based on information supplied by a client to an authentication server.
When a user logs on to a network that uses 802.1x port security, the device grants (or does not
grant) access to network services after the user is authenticated by an authentication server. The
user-based authentication in 802.1x port security provides an alternative to granting network
access based on a user’s IP address, MAC address, or subnetwork.
IETF RFC support
The implementation of 802.1x port security supports the following RFCs:
•
RFC 2284 PPP Extensible Authentication Protocol (EAP)
•
RFC 2865 Remote Authentication Dial In User Service (RADIUS)
•
RFC 2869 RADIUS Extensions
EAP-Request
or Identity
Frame
Retransmiss
ions
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Timeouts for
Retransmiss
ion of
Messages to
the
Authenticati
on Server
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Timeout for
Retransmiss
ion of
EAP-Request
Frames to
the client
Yes
Yes
Yes
Yes
Yes
Yes
Yes
Allowing
Multiple
802.1x
clients to
Authenticate
Yes
Yes
Yes
Yes
Yes
Yes
Yes
TABLE 47
Supported 802.1x port security features
Features
supported
Brocade
NetIron XMR
Series
Brocade
MLX Series
Brocade
NetIron CES
2000 Series
BASE
package
Brocade
NetIron CES
2000 Series
ME_PREM
package
Brocade
NetIron CES
2000 Series
L3_PREM
package
Brocade
NetIron CER
2000 Series
Base
package
Brocade
NetIron CER
2000 Series
Advanced
Services
package