NETGEAR L3 Switch User Manual


 
7000 Series L3 Managed Switch Reference Manual for Software v2.0
B-2 802.1x Port-Based Authentication Overview
Figure B-1: 802.1x authentication
1. The client sends an EAP-start message. This begins a series of message exchanges to
authenticate the client.
2. The access point replies with an EAP-request identity message.
3. The client sends an EAP-response packet containing the identity to the authentication server.
4. The authentication server uses a specific authentication algorithm to verify the client's identity.
This could be through the use of digital certificates or other EAP authentication type.
5. The authentication server will either send an accept or reject message to the access point.
6. The access point sends an EAP-success packet (or reject packet) to the client.
7. If the authentication server accepts the client, then the access point will transition the client's
port to an authorized state and forward additional traffic.
1
2
3
4
56
7