Allied Telesis AT-S86 User Manual
Page 113
AT-S86 Management Software User’s Guide
113
Force-authorized
Disables IEEE 802.1X port-based authentication and causes the port
to transition to the authorized state without any authentication
exchange required. The port transmits and receives normal traffic
without 802.1x-based authentication of the client. This is the default
setting.
Force-unauthorized
Causes the port to remain in the unauthorized state, ignoring all
attempts by the client to authenticate. The switch cannot provide
authentication services to the client through the interface.
Auto
Enables 802.1x port-based authentication and causes the port to begin
in the unauthorized state, allowing only EAPOL frames to be sent and
received through the port. The authentication process begins when the
link state of the port changes or the port receives an EAPOL-Start
packet from a supplicant. The switch requests the identity of the client
and begins relaying authentication messages between the client and
the authentication server. Each client that attempts to access the
network is uniquely identified by the switch using the client's MAC
address.
5. In the Multi-host list, select one of the following:
Disable
Only one host among the ones that passed authentication is allowed to
access the switch.
Enable
All hosts connected to the port are allowed access so long as at least
one host passed authentication.
Note
Strictly limit the use of the multi-host feature. Otherwise, undesirable
switch operation may result. Use this feature only when the link will
carry traffic from just one client or only management traffic.
6. In the GuestVID field, enter the VLAN ID for guests to allow the users
without 802.1x clients to have limited network access.
7. Do one of the following:
Click OK to save the changes.
Click Reload to clear the changes and start over.
8. To permanently save these settings in the configuration file, from the
main menu, select Save Configuration.
The Save Configuration page is shown in Figure 3 on page 21.