2 802.1x port based network access control, 1 definitions of terms and abbreviations, 1x port based network access control -19 3.6.2.1 – Enterasys Networks 6H2xx User Manual

Overview of Security Methods

Accessing Local Management

3-19

3.6.2

802.1X Port Based Network Access Control

This section provides

• a brief description of 802.1X Port Based Network Access Control

,

• definitions of common terms and abbreviations, and

• an overview of the tasks that may be accomplished using the 802.1X (EAP security and

authentication features.

When using the physical access characteristics of IEEE 802 LAN infrastructures, the 802.1X
standard provides a mechanism for administrators to securely authenticate and grant appropriate
access to end user devices directly attached to switch module ports. When configured in
conjunction with NetSight Policy Manager and Radius server(s), Enterasys Networks’ switch
modules can dynamically administer user based policy that is specifically tailored to the end user’s
needs.

3.6.2.1

Definitions of Terms and Abbreviations

Table 3-4

provides an explanation of authentication terms and abbreviations used when describing

the 802.1X and EAP security and authentication features.

Table 3-4

Authentication Terms and Abbreviations

Term

Definition

EAP

Extensible Authentication Protocol (e.g., Microsoft IAS
Server and Funk Steel Belted Radius).

PAE

Port Access Entity, device firmware that implements or
participates in the protocol.

PWA

Port Web Authentication, an enterprise specific
authentication process using a web browser user-login
process to gain access to ports.

RADIUS

Remote Authentication Dial In User Service.

Authenticator

The entity that sits between a supplicant and the
authentication server. The authenticator’s job is to pass
authenticating information between the supplicant and
authentication server until an authentication decision is
made.