Allied Telesis AT-9000 Series User Manual

Chapter 17: Setting 802.1x Port-based Network Access

190

5. Modify the following fields as needed:



Interface— Indicates the port number.



Port Role— Indicates that you have selected the port as an
Authenticator.



Authentication Mode— Sets the authentication mode. Choose
from the following:

Unauthorized

Sets the port to the 802.1x

authenticator role, in the unauthorized
state. Although the port is in the
authenticator role, the switch blocks all
authentication on the port. If you set all
the ports on the switch to this setting,
then no clients can log on and forward
packets through them.

Force-authorized

Sets port to the 802.1x authenticator

role, in the force-authorized state. A
port in the force-authorized state
transitions to the authorized state
without any authentication exchanges
required. The port transmits and
receives traffic normally without
802.1X-based authentication of the
clients.

Auto

Sets the port to the 802.1X port-based

authenticator role. A port in this state
begins in the unauthorized state,
forwarding only EAPOL frames, until a
client has logged on successfully.

Supplicant

Sets the port to the 802.1X port-based

supplicant role. A port in this state acts
as a client. It has to log on by providing
a valid username and password to the
device it is connected to, typically
another switch port, before forwarding
traffic. A port set to the supplicant role
and connected to another port that is
not set to the authenticator role will
begin to forward traffic after a timeout
period and without logging on.



Timeouts— The following fields set the timers for this feature:

Quiet Period

Sets the number of seconds that an

authenticator port remains in the quiet
state following a failed authentication