Configuring Switch Information 225
Configuring Switch Information
This section provides all system operation and general information for configuring network
security, ports, Address tables, GARP, VLANs, Spanning Tree, Port Aggregation, and Multicast
Support.
Configuring Network Security
Use the
Network Security
page to set network security through both access control lists and locked
ports. To open the
Network Security
page, select
Switch
→
Network Security
.
Port Based Authentication
Port based authentication enables authenticating system users on a per-port basis via an external
server. Only authenticated and approved system users can transmit and receive data. Ports are
authenticated via the RADIUS server using the Extensible Authentication Protocol (EAP). Port
Authentication includes:
•
Authenticators
— Specifies the device port which is authenticated before permitting system
access.
•
Supplicants
— Specifies host connected to the authenticated port requesting to access the
system services.
•
Authentication Server
— Specifies the external server, for example, the RADIUS server that
performs the authentication on behalf of the authenticator, and indicates whether the
supplicant is authorized to access system services.
Port based authentication creates two access states:
•
Controlled Access
— Permits communication between the supplicant and the system, if the
supplicant is authorized.
•
Uncontrolled Access
— Permits uncontrolled communication regardless of the port state.
The device currently supports Port Based Authentication via RADIUS servers.
Advanced Port Based Authentication
Advanced Port Based Authentication:
• Enables multiple hosts to be attached to a single port.
• Requires only one host to be authorized for all hosts to have system access. If the port is
unauthorized, all attached hosts are denied access to the network.