D-Link DSG-1100-10/ME Manual page 55

D-Link DGS-1100-10/ME User Manual
software and the RADIUS server. Depending on the authenticated results, the port is either made available
to the user, or the user is denied access to the network.
The RADIUS servers make the network a lot easier to manage for the administrator by gathering and storing
the user lists.
By default, 802.1X is disabled. To use EAP for security, select Enabled and set the Authentication Mode
and Authentication Protocol then click Apply.
Authentication Mode: Indicates the 802.1X mode enabled on the device. The possible field values are:
Port Based – Enables 802.1X on ports. This is the default value.
MAC Based – Enables 802.1X on MAC addresses.
Authentication Protocol: Select the 802.1X Protocol on the device. The possible field values are Local and
RADIUS EAP.
From Port/To Port: Enter the port or ports to be set.
QuietPeriod (0 – 65535 sec): Enter the number of seconds that the switch remains in the quiet state
following a failed authentication exchange with the client. Default is 60 seconds.
ServerTimeout (1 – 65535 sec): Enter the amount of time the switch waits for a response from the client
before resending the response to the authentication server. Default is 30 seconds.
TxPeriod (1 – 65535 sec): Enter the TxPeriod of time for the authenticator PAE state machine. This value
determines the period of an EAP Request/Identity packet transmitted to the client. Default is 30 seconds.
ReAuthentication: Select whether regular reauthentication will take place on this port. The default setting is
Disabled.
Capability: Select the capability of the 802.1X. The possible field values are:
Authenticator – Specify the Authenticator settings to be applied on a per-port basis.
None – Disable 802.1X functions on the port.
SuppTimeout (1 – 65535 sec): This value determines timeout conditions in the exchanges between the
Authenticator and the client. Default is 30 seconds.
MaxReq (1 – 10): This parameter specifies the maximum number of times that the switch retransmits an
EAP request (md-5challnege) to the client before it times out the authentication session. Default is 2 times.
ReAuthPeriod (1 – 65535 sec): A constant that defines a nonzero number of seconds between periodic
reauthentication of the client. The default setting is 3600 seconds.
Port Control: This allows you to control the port authorization state.
Select ForceAuthorized to disable 802.1X and cause the port to transition to the authorized state
without any authentication exchange required. This means the port transmits and receives normal
traffic without 802.1X-based authentication of the client.
Figure 4.93 - Security > 802.1X > 802.1X Settings
5 5 8 8