EasyManua.ls Logo

Ruckus Wireless ZoneFlex R310 - Page 120

Ruckus Wireless ZoneFlex R310
152 pages
Save Page as PDF
Print Icon
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
If the Ethernet port is configured as an Access Port, it can be configured with only one
Untag VLAN ID and its membership includes only that one VLAN.
If the Ethernet port is configured as a General Port, it can be configured to include multiple
VLANs in its membership and one Untag VLAN.
Working with 802.1X on Wired Ethernet Ports
802.1X authentication consists of the following three components:
Supplicant: The supplicant sends access request messages along with credentials,
such as user name / password or digital certificate, to an authenticator, which forwards
the credentials to the authentication server for verification.
Authenticator: The authenticator challenges the identity of the supplicant, then
passes its credentials to the AAA server. If the credentials are accepted the supplicant
is allowed access.
Authentication Server (AAA Server): The AAA server verifies the supplicant's
credentials and permits or rejects its request for access.
For wired 802.1X, a Ruckus AP's Ethernet port can be configured as either an
Authenticator or as a Supplicant, depending on which port type is selected. The
following tables describe the 802.1X roles available by port type.
Table 49: Authenticator support by port type
General PortAccess PortTrunk Port
XXXPort-based mode
XMAC-based mode
Table 50: Supplicant support by port type
General PortAccess PortTrunk Port
XSupplicant
The following considerations apply:
A single port cannot be configured as both an Authenticator and Supplicant at the
same time.
Only one port per AP can be configured as a Supplicant.
If the AP is connecting to a switch port with 802.1X authentication enabled, the APs
port type should be configured as a Trunk Port and its role should be configured as
Supplicant. The switch port should be configured as a Trunk port in Port-based
Authenticator mode.
If there are multiple devices connected to an AP port (through a downstream switch),
the port can be configured as either Port-based or MAC-based Authenticator. In
Port-based mode, only one of the attached MAC hosts must be authorized for all
hosts to be granted access to the network. In MAC-based mode, each MAC host is
individually authenticated.
120
ZoneFlex Indoor Access Point Release 104.0 User Guide
Configuration
Configuring the AP

Table of Contents

Other manuals for Ruckus Wireless ZoneFlex R310

Preview: Quick Setup Guide
Quick Setup Guide8 pages

Related product manuals