Multi-supplicant mode, Multi-supplicant mode 0 – Allied Telesis AT-8100 Series User Manual

Chapter 71: 802.1x Port-based Network Access Control

1070

As mentioned earlier, should the supplicant who performed the initial
logon fail to reauthenticate when necessary or log out, the port reverts to
the unauthenticated state, blocking all traffic to and from all supplicants.
Another supplicant must be authenticated in order for all remaining
supplicants to continue to forward traffic through the port.

Multi-Supplicant

Mode

This mode authenticates all the supplicants on an authenticator port. This
mode is appropriate in situations where an authenticator port is supporting
more than one supplicant, and you want all supplicants to be
authenticated. A switch can support up to a maximum of 208 supplicants.

If the authentication method is MAC address-based, the authenticator port
uses the MAC addresses of the supplicants as the username and
password combinations. The port accepts and forwards traffic only from
those supplicants whose MAC addresses have been entered on the
RADIUS server and denies access to all other users.

An example of this authenticator operating mode is illustrated in Figure
192 on page 1071. The supplicants are connected to a hub or non-802.1x
compliant switch which is connected to an authenticator port on the
switch. If the port is configured as 802.1x Authenticator, the supplicants
must successfully authenticate before they can forward traffic through the
switch.