Table of Contents
Advertisement
Buttons
Auto-refresh
: Check this box to refresh the page automatically. Automatic refresh occurs every 3 seconds.
:
Click to refresh the page immediately.
: Clears the counters for the selected server. The "Pending Requests" counter will not be cleared by this
operation.
4.6.3 Port Authentication
4.6.3.1 Network Access Server Configuration
This page allows you to configure the IEEE 802.1X and MAC-based authentication system and port settings.
The IEEE 802.1X standard defines a port-based access control procedure that prevents unauthorized access to a network by
requiring users to first submit credentials for authentication. One or more central servers, the backend servers, determine
whether the user is allowed access to the network. These backend (RADIUS) servers are configured on the
"Configuration→Security→AAA" Page. The IEEE802.1X standard defines port-based operation, but non-standard variants
overcome security limitations as shall be explored below.
MAC-based authentication allows for authentication of more than one user on the same port, and doesn't require the user to
have special 802.1X supplicant software installed on his system. The switch uses the user's MAC address to authenticate
against the backend server. Intruders can create counterfeit MAC addresses, which makes MAC-based authentication less
secure than 802.1X authentication. The NAS configuration consists of two sections, a system- and a port-wide. The Network
Access Server Configuration screen in
User's Manual of GS-5220 LCD Series Managed Switch
Figure 4-6-3-1
appears.
312
The granularity of this measurement is
100 ms. A value of 0 ms indicates that
there hasn't been round-trip
communication with the server yet.
Advertisement
Table of Contents
