Filter
Top Products
authenticated. But they
need to be authenticated before accessing external resources. After
passing the authentication, the ports will be removed from the Guest VLAN and be allowed to
access the other resources.
With the Guest VLAN function enabled, users can access the Guest VLAN to install 802.1X client
program or upgrade their 802.1x clients without being authenticated. If there is no supplicant past
the authentication on the port in a certain time, the switch will add the port to the Guest VLAN.
With 802.1X function enabled and Guest VLAN configured, after the maximum number retries
have been made to send the EAP-Request/Identity packets and there are still ports that have not
sent any response back, the switch will then add these ports into the Guest VLAN according to
their link types. Only when the corresponding user passes the 802.1X authentication, the port will
be removed from the Guest VLAN and added to the specified VLAN. In addition, the port will back
to the Guest VLAN when its connected user logs off.
The 802.1X function is implemented on the Global Config, Port Config and Radius Server
pages.
11.4.1 Global Config
On this page, you can enable the 802.1X authentication function globally and control the
authentication process by specifying the Authentication Method, Guest VLAN and various Timers.
Choose the menu Network Security→802.1X→Global Config to load the following page.
Figure 11-20 Global Config
The following entries are displayed on this screen:
Global Config
802.1X: Enable/Disable the 802.1X function.
Authentication Method: Select the Authentication Method from the pull-down list.
EAP-MD5: IEEE 802.1X authentication system
uses extensible authentication protocol (EAP) to
161