Chapter 4
Configuration Using the Web-based Utility
21
Business Series Smart Gigabit Ethernet Switch
Security
Security > 802.1x Settings
The 802.1x Settings screen is used to configure a port’s
802.1x authentication settings.
Security > 802.1x Settings
Port-based authentication enables authenticating system
users on a per-port basis via an external server. Only
authenticated and approved system users can transmit
and receive data. Ports are authenticated via a RADIUS
server using the Extensible Authentication Protocol (EAP)
.
Parameters
Enable 802.1x Select the checkbox to enable 802.1x
authentication. The default is not enabled.
Interface The interface on which to configure 802.1x.
Port Select the port from the drop-down menu.
Status Port Control Sets the port authentication mode
top one of the following options:
ForceAuthorized (Default) Forces the port to grant
access to all clients, either dot1x-aware or otherwise.
ForceUnauthorized Forces the port to deny access
to all clients, either dot1x-aware or otherwise.
Auto Requires a dot1x-aware client to be authorized
by the authentication server. Clients that are not dot1x-
aware will be denied access.
Enable Periodic Reauthentication Select the checkbox
to permit periodic port reauthentication.
Setting Timer Click this button to open the Setting Timer
screen to configure ports for 802.1x functionality.
Update If you click this button, your changes are saved
and appear immediately in the screen’s Table section.
•
•
•
•
Table
This part of the 802.1x Settings screen displays a summary
of the settings that appear in the Parameters section of the
screen. If you click More Details, the settings described in
the “Setting Timer” section are added to the table.
Click Save Settings to apply the changes, or Cancel
Changes to cancel the changes.
Setting Timer
The Setting Timer screen appears when you click Setting
Timer on the 802.1x Settings screen. You use the Setting
Timer screen to configure a port’s 802.1x functionality.
Security > 802.1x Settings > Setting Timer
Port Displays the port name.
Reauthentication Period Specifies the number
of seconds after which a connected client must be
reauthenticated. The range is 300 to 4294967295
seconds. The default value is 3600 seconds.
Quiet Period Specifies the time that a switch port waits
after Max EAP Requests is exceeded before attempting
to acquire a new client. The range is 0 to 65535 seconds.
The default is 60 seconds.
Resending EAP Specifies the time that the switch waits
for a response to an EAP request/identity frame from the
client before retransmitting an EAP packet. The range is 1
to 65535 seconds. The default is 30 seconds.
Max EAP Requests Specifies the maximum number
of times the switch port will retransmit an EAP request
packet to the client before it times out the authentication
session. The range is 1 to 10 times. The default is 2 retries.
Supplicant Timeout Displays the number of seconds that
lapses before EAP requests are resent to the supplicant. The
range is 1 to 65535 seconds. The default is 30 seconds.
Server Timeout The number of seconds that lapses
before the switch resends a request to the authentication
server The range is 1 to 65535. The default is 30 seconds.
Click Save to save your changes and leave the screen
open. Click Save & Close to save your changes and close
the screen. Click Close to close the screen without saving
your changes.