Port Access Entity (802.1X); 802.1X Port-Based And Mac-Based Access Control - D-Link xStack DGS-3600 User Manual
Layer 3 gigabit ethernet managed switch
Hide thumbs
Also See for xStack DGS-3600:
- User manual (433 pages) ,
- Cli manual (431 pages) ,
- Hardware installation manual (66 pages)
Table of Contents
Advertisement
xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch
Port Access Entity (802.1X)
802.1X Port-Based and MAC-Based Access Control
The IEEE 802.1X standard is a security measure for authorizing and authenticating users to gain access to various wired or
wireless devices on a specified Local Area Network by using a Client and Server based access control model. This is
accomplished by using a RADIUS server to authenticate users trying to access a network by relaying Extensible Authentication
Protocol over LAN (EAPOL) packets between the Client and the Server. The following figure represents a basic EAPOL packet:
Figure 11- 4. The EAPOL Packet
Utilizing this method, unauthorized devices are restricted from connecting to a LAN through a port to which the user is connected.
EAPOL packets are the only traffic that can be transmitted through the specific port until authorization is granted. The 802.1X
Access Control method holds three roles, each of which are vital to creating and upkeeping a stable and working Access Control
security method.
Figure 11- 5. The three roles of 802.1X
The following section will explain the three roles of Client, Authenticator and Authentication Server in greater detail.
204
Advertisement
Table of Contents
