Chapter 12
| Security Measures
Web Authentication
– 267 –
Figure 170: Showing User Accounts
Web Authentication
Web authentication allows stations to authenticate and access the network in
situations where 802.1X or Network Access authentication are infeasible or
impractical. The web authentication feature allows unauthenticated hosts to
request and receive a DHCP assigned IP address and perform DNS queries. All other
traffic, except for HTTP protocol traffic, is blocked. The switch intercepts HTTP
protocol traffic and redirects it to a switch-generated web page that facilitates user
name and password authentication via RADIUS. Once authentication is successful,
the web browser is forwarded on to the originally requested web page. Successful
authentication is valid for all hosts connected to the port.
Note:
RADIUS authentication must be activated and configured properly for the
web authentication feature to work properly. (See “Configuring Local/Remote
Logon Authentication” on page 251.)
Note:
Web authentication cannot be configured on trunk ports.
Configuring Global
Settings for Web
Authentication
Use the Security > Web Authentication (Configure Global) page to edit the global
parameters for web authentication.
Parameters
These parameters are displayed:
◆ Web Authentication Status – Enables web authentication for the switch.
(Default: Disabled)
Note that this feature must also be enabled for any port where required under
the Configure Interface menu.
◆ Session Timeout – Configures how long an authenticated session stays active
before it must re-authenticate itself. (Range: 300-3600 seconds, or 0 for
disabled; Default: 3600 seconds)
To Next Page
Loading...
Need help?
General
