Table of Contents
Advertisement
xStack® DGS-3620 Series Managed Switch Web UI Reference Guide
The fields that can be configured are described below:
Parameter
Authorization Attributes
State
Authentication Server
Failover
Unit
From Port / To Port
Authentication Methods
Figure 8-49 Compound Authentication Settings window
Description
Click the radio buttons to enable of disable the Authorization Attributes State.
Click the radio buttons to configure the authentication server failover function.
Block (default setting) - The client is always regarded as un-authenticated.
Local - The switch will resort to using the local database to authenticate the
client. If the client fails on local authentication, the client is regarded as un-
authenticated, otherwise, it authenticated.
Permit - The client is always regarded as authenticated. If guest VLAN is
enabled, clients will stay on the guest VLAN, otherwise, they will stay on the
original VLAN.
Select the unit you want to configure.
Use the drop-down menus to select a range of ports to be enabled as
compound authentication ports.
The compound authentication method options include: None, Any (MAC,
802.1X, JWAC or WAC), 802.1X+IMPB, IMPB+JWAC, IMPB+WAC, and
MAC+IMPB.
None - all compound authentication methods are disabled.
Any (MAC, 802.1X, JWAC or WAC) - if any of the authentication methods
pass, then access will be granted. In this mode, MAC, 802.1X, JWAC and
WAC can be enabled on a port at the same time. In Any (MAC, 802.1X,
JWAC or WAC) mode, whether an individual security module is active on a
port depends on its system state.
802.1X+IMPB - 802.1X will be verified first, and then IMPB will be verified.
Both authentication methods need to be passed.
359
Advertisement
Table of Contents
