beautypg.com

Allied Telesis AT-S101 User Manual

Page 166

background image

Chapter 14: 802.1x Port-based Network Access Control

166

4. Configure the following parameters as needed. The parameters are

defined here:

NAS ID
This parameter assigns an 802.1x identifier to the switch that applies
to all ports. The NAS ID can be up to sixteen characters. Valid
characters are 0 to 9, a to z, and A to Z. Spaces are allowed.
Specifying an NAS ID is optional.

Authentication Method
This parameter indicates the authentication method used by the
switch. The options are RADIUS or local. The default setting is
RADIUS.

Port Control
Sets the 802.1x port control setting. The possible settings are:

Auto - Enables 802.1x port-based authentication and causes the port
to begin in the unauthorized state, allowing only EAPOL frames to be
sent and received through the port. The authentication process begins
when the link state of the port changes or the port receives an EAPOL-
Start packet from a supplicant. The switch requests the identity of the
client and begins relaying authentication prompts between the client
and the authentication server.

Force-unauthorized - Places the port in the unauthorized state,
ignoring all attempts by the client to authenticate. The switch cannot
provide authentication services to the client through the interface.

Force-authorized - Disables IEEE 802.1x port-based authentication
and causes the port to transition to the authorized state without any
authentication exchange required. The port transmits and receives
normal traffic without 802.1x-based authentication of the client. This is
the default setting

Re-authentication Status
Specifies if reauthentication should occur according to the
reauthentication period. The options are Enabled or Disabled.

Transmission Period
Sets the number of seconds that the switch waits for a response to an
EAP-request/identity frame from the client before retransmitting the
request. The default value is 30 seconds. The range is 1 to 65,535
seconds.

Initialize
Pressing this button ends the 802.1x session and connectivity is lost
during re-authentication on an 802.1x enabled port. In addition, the
value of the Port Status parameter is changed to “Unauthorized” if you
press the Initialize button on an 802.1x enabled port.

See also other documents in the category Allied Telesis Computer hardware: