Port-based authentication global – Dell PowerEdge VRTX User Manual
Page 233

233
FILE LOCATION: C:\Users\gina\Desktop\Checkout_new\Dell Plasma\User
Guide\Plasma_UGSwitching_NetworkSecurity.fm
D E L L CO N F I D E N T I A L – P R E L I MI N A RY 4/ 1 8 /1 3 - F O R PR O O F O N LY
For authentication to function, it must be activated both globally, in the Port-
Based Authentication Global page and individually on each port, in the Port-
Based Authentication Interface Settings pages.
Monitoring Mode
Monitoring mode enables providing users who fail authentication with
limited network access. This enables these users to correct the reason that the
authentication failed.
The following are the main aspects of this feature:
• Enables successful authentications using the returned RADIUS
information
• Provides a mechanism to report unsuccessful authentications without
negative repercussions to the user due to administrator errors
• Accurately reports the data received from the successful and non-
successful operations so that appropriate changes to problem areas may be
made.
The Dot1x monitoring activation command includes a special VLAN that is
used when there is no access interface configuration present and the client(s)
unsuccessfully authenticates. These clients are placed in the special VLAN.
For users that unsuccessfully authenticate during re-authentication process,
but already have existing VLANs configured, the failure to authenticate does
not put them in a disabled state but places them back to the existing
configuration.
Port-Based Authentication Global
To globally configure authentication:
1 Click Switching > Network Security > Dot1x Authentication > Port
Based Authentication Global to display the Port Based Authentication
Global page.
2 Enter the following fields:
–
Port Based Authentication State — Enable/disable port-based
authentication.
–
Authentication Method — Select an authentication method. The
possible options are: