S350 Series 24-Port (PoE+) and 48-Port Gigabit Ethernet Smart Managed Pro Switches
Manage Device Security User Manual244
network services behind the NAS. If the VMC hosts multiple virtual machines,
after the VMC is authenticated, traffic is allowed from all virtual machines that are
hosted by the VMC.
Note: If a data client is authenticated first, a voice client can be authenticated
only through 802.1x.
Note: If the switch exceeds the limit of one hundred and four (104) 802.1x
users, each interface can authenticate one additional voice client. (The
limit of 104 clients can include MAB clients.) For example, even if the
switch already supports 104 clients, each interface can still
authenticate one additional IP phone.
• Guest VLAN ID. Specify the VLAN ID for the guest VLAN.
The range is from 0 to
4093.
The default value is 0. Enter 0 to reset the guest VLAN ID on the interface. The
guest VLAN allows the port to provide a distinguished service to unauthenticated
users, after three authentication failures. This feature provides a mechanism to allow
users access to hosts on the guest VLAN.
• Unauthenticated VLAN ID. Specify the VLAN ID of the unauthenticated VLAN for the
selected port.
The range is from 0 to 3965.
The default value is 0. Hosts that fail the
authentication might be denied access to the network or placed on a VLAN created
for unauthenticated clients. This VLAN might be configured with limited network
access.
• Periodic Reauthentication.
T
o allow periodic reauthentication of the supplicant for
the specified port, select Enable
• Reauthentication Period Type. If you enable period authentication, select the type
of reauthentication:
- Server.
The reauthentication time-out value from the server is used.
This is the
default setting. The server’s session time-out and session termination settings are
used by the authenticator to reauthenticate a supplicant on the interface. An
example of a server is a RADIUS server.
- User.
You must enter the time-out value in the Reauthentication Period
field.
• Reauthentication Period. If you enable period authentication and you select User as
the reauthentication period type, specify the time in seconds after which
reauthentication of the supplicant occurs. The reauthentication period must be a value
in the range from 1 to 65535 seconds.
The default value is 3600 seconds.
• Max ReAuth Requests. Specify the maximum number of reauthentication requests
for the port.
• Quiet Period. Specify the time in seconds that the port remains in the quiet state
following a failed authentication exchange. While in the quite state, the port does not
attempt to acquire a supplicant.
• Resending EAP. Specify the EAP retransmit period for the selected port.
The
transmit period is the time in seconds, after which an EAPoL EAP Request/Identify
frame is resent to the supplicant.
To Next Page
Loading...
Need help?
General
Weight and Dimensions
