Manage Device Security
226
S350 Series 8-Port Gigabit Ethernet Smart Managed Pro Switch Models GS308T and GS310TP
5. Select Security > Port Authentication > Advanced > Port Authentication.
The previous figure shows only part of the page.
6. Use the horizontal scroll bar at the bottom of the page to view all the fields.
7. Select the check box next to the port.
You can also select multiple check boxes to apply the same settings to the selected ports,
or select the check box in the heading row to apply the same settings to all ports.
8. Specify the following settings:
• Port Control. Defines the port authorization state.
The control mode is set only if the
link status of the port is link up. Select one of the following options:
- Auto.
The switch automatically detects the mode of the interface.
- Authorized.
The switch places the interface into an authorized state without
being authenticated. The interface sends and receives normal traffic without client
port-based authentication.
- Unauthorized.
The switch denies the selected interface system access by
moving the interface into unauthorized state. The switch cannot provide
authentication services to the client through the interface.
- MAC based.
This mode allows multiple supplicants connected to the same port to
each authenticate individually. Each host connected to the port must authenticate
separately in order to gain access to the network. The hosts are distinguished by
their MAC addresses.
• Guest VLAN ID. Specify the VLAN ID for the guest VLAN.
The range is from 0 to
4093. The default value is 0. Enter 0 to reset the guest VLAN ID on the interface. The
guest VLAN allows the port to provide a distinguished service to unauthenticated
users, after three authentication failures. This feature provides a mechanism to allow
users access to hosts on the guest VLAN.
• Guest VLAN Period. Specify the time in seconds that the selected port remains in
the quiet state following a failed authentication exchange.
The guest VLAN time-out
must be a value in the range from 1 to 300. The default value is 90.
• Unauthenticated VLAN ID. Specify the VLAN ID of the unauthenticated VLAN for the
selected port.
The range is from 0 to 3965. The default value is 0. Hosts that fail the
authentication might be denied access to the network or placed on a VLAN created
for unauthenticated clients. This VLAN might be configured with limited network
access.
• Periodic Reauthentication. Select Enable to allow periodic reauthentication of the
supplicant for the specified port.
To Next Page
Loading...
Need help?
General
