Port-based authentication global – Dell PowerEdge VRTX User Manual

233

FILE LOCATION: C:\Users\gina\Desktop\Checkout_new\Dell Plasma\User

Guide\Plasma_UGSwitching_NetworkSecurity.fm

D E L L CO N F I D E N T I A L – P R E L I MI N A RY 4/ 1 8 /1 3 - F O R PR O O F O N LY

For authentication to function, it must be activated both globally, in the Port-

Based Authentication Global page and individually on each port, in the Port-

Based Authentication Interface Settings pages.

Monitoring Mode

Monitoring mode enables providing users who fail authentication with

limited network access. This enables these users to correct the reason that the

authentication failed.
The following are the main aspects of this feature:

• Enables successful authentications using the returned RADIUS

information

• Provides a mechanism to report unsuccessful authentications without

negative repercussions to the user due to administrator errors

• Accurately reports the data received from the successful and non-

successful operations so that appropriate changes to problem areas may be

made.

The Dot1x monitoring activation command includes a special VLAN that is

used when there is no access interface configuration present and the client(s)

unsuccessfully authenticates. These clients are placed in the special VLAN.

For users that unsuccessfully authenticate during re-authentication process,

but already have existing VLANs configured, the failure to authenticate does

not put them in a disabled state but places them back to the existing

configuration.

Port-Based Authentication Global

To globally configure authentication:

1 Click Switching > Network Security > Dot1x Authentication > Port

Based Authentication Global to display the Port Based Authentication

Global page.

2 Enter the following fields:

–

Port Based Authentication State — Enable/disable port-based

authentication.

–

Authentication Method — Select an authentication method. The

possible options are: