beautypg.com

Allied Telesis AT-GS950/24 User Manual

Page 248

background image

Chapter 18: Security

248

Port - This parameter specifies the port being configured for
authentication.

Authentication Mode - This parameter specifies the port-based
authentication mode. The pull-down menu choices are as follows:

802.1x - 802.1x is specified as the authentication mode. This
setting applies to configuration for either RADIUS or Dial-In User
authentication. For configuration information, see either
“RADIUS Client” on page 251or “Dial-in User - Local
Authentication” on page 254.

MAC Based - MAC Based authentication mode is specified. For
more information about configuring this mode, see “Destination
MAC Filter” on page 257.

Port Control - This parameter specifies the port-based
authentication role. The pull-down menu choices are as follows:

Forced Unauthorized - This parameter sets the port to the
802.1x authenticator role, in the unauthorized state. Although
the ports are in the authenticator role, the switch blocks all
authentication on the ports, which means that no clients can log
on and forward packets through them.

Auto - Sets the port to the 802.1X port-based authenticator role.
Ports begin in the unauthorized state, forwarding only EAPOL
frames, until a client has successfully logged on.

Forced Authorized - Sets a port to Forced-Authorized port
control. Ports that are set to the force-authorized state transition
to the authorized state without any authentication exchanges
required. The ports transmit and receive traffic normally without
802.1Xbased authentication of the clients.

Re-authentication Status - This parameter activates or de-
activates the reauthentication on the authenticator ports.

Enabled - Configures the port to activate reauthentication on
the authenticator ports. The clients must periodically
reauthenticate according to the time interval set with the Re-
authentication Period.

Disabled - Configures the port to remove reauthentication from
authenticator ports so that clients do not have to periodically
reauthenticate after the initial authentication. Reauthentication is
still required if there is a change to the status of the link between
a client and the switch or the switch is reset or power cycled.

Control Direction - The port authentication is set to Both
meaning both transmit and receive packets are affected. This
parameter cannot be changed.

See also other documents in the category Allied Telesis Computer hardware: