C
HAPTER
20
| 802.1X Security
802.1X Global Settings
– 110 –
◆ RADIUS authentication must be enabled on the switch and the IP
address of the RADIUS server specified.
◆ 802.1X must be enabled globally for the switch.
◆ Each switch port that will be used must be set to “Authentication”
mode.
◆ Each client that needs to be authenticated must have dot1X client
software installed and properly configured.
◆ The RADIUS server and client also have to support the same EAP
authentication type.
802.1X GLOBAL SETTINGS
The 802.1X protocol provides port authentication. The 802.1X protocol
must be enabled globally for the switch system before port settings are
active.
PARAMETERS
The following parameters are displayed on the 802.1X Setting page:
◆ 802.1X — Sets the global setting for 802.1X. (Default: Disabled)
◆ RADIUS Server IP — Address of the authentication server.
◆ Server Port — Network (UDP) port of RADIUS server used for
authentication messages. (Range: 1024-65535; Default: 1812)
◆ Shared Key — Encryption key used for RADIUS server messages. Do
not use blank spaces in the string. (Maximum length: 30 characters)
◆ Retype Shared Key — Re-type the string entered in the previous field
to ensure no errors were made. The switch will not change the
encryption key if these two fields do not match.
◆ ReauthEnabled — Sets clients to be re-authenticated after the
interval specified by the Reauth Period. Re-authentication can be used
to detect if a new device is plugged into a switch port.
(Default: Enabled)
◆ Reauth Period — Sets the time period after which a connected client
must be re-authenticated. (Range: 30-65535 seconds; Default: 3600
seconds)
To Next Page
Loading...
Need help?
General