Chapter 12
| Security Measures
Configuring 802.1X Port Authentication
– 359 –
◆ Intrusion Action – Sets the port’s response to a failed authentication.
■
Block Traffic – Blocks all non-EAP traffic on the port. (This is the default
setting.)
■
Guest VLAN – All traffic for the port is assigned to a guest VLAN. The guest
VLAN must be separately configured (See “Configuring VLAN Groups” on
page 166) and mapped on each port (See “Configuring Network Access
for Ports” on page 302).
Supplicant List
◆ Supplicant – MAC address of authorized client.
Authenticator PAE State Machine
◆ State – Current state (including initialize, disconnected, connecting,
authenticating, authenticated, aborting, held, force_authorized,
force_unauthorized).
◆ Reauth Count – Number of times connecting state is re-entered.
◆ Current Identifier – Identifier sent in each EAP Success, Failure or Request
packet by the Authentication Server.
Backend State Machine
◆ State – Current state (including request, response, success, fail, timeout, idle,
initialize).
◆ Request Count – Number of EAP Request packets sent to the Supplicant
without receiving a response.
◆ Identifier (Server) – Identifier carried in the most recent EAP Success, Failure or
Request packet received from the Authentication Server.
Reauthentication State Machine
◆ State – Current state (including initialize, reauthenticate).
To Next Page
Loading...
Need help?
General