HP 6125G Configuration Manual page 81
Security configuration guide
Hide thumbs
Also See for 6125G:
- Command reference manual (426 pages) ,
- Configuration manual (379 pages) ,
- Release note (60 pages)
Table of Contents
Advertisement
Figure 31 802.1X authentication procedure in EAP relay mode
When a user launches the 802.1X client software and enters a registered username and password,
1.
the 802.1X client software sends an EAPOL-Start packet to the network access device.
The network access device responds with an Identity EAP-Request packet to ask for the client
2.
username.
In response to the Identity EAP-Request packet, the client sends the username in an Identity
3.
EAP-Response packet to the network access device.
The network access device relays the Identity EAP-Response packet in a RADIUS Access-Request
4.
packet to the authentication server.
The authentication server uses the identity information in the RADIUS Access-Request to search its
5.
user database. If a matching entry is found, the server uses a randomly generated challenge
(EAP-Request/MD5 challenge) to encrypt the password in the entry, and sends the challenge in a
RADIUS Access-Challenge packet to the network access device.
The network access device relays the EAP-Request/MD5 Challenge packet in a RADIUS
6.
Access-Request packet to the client.
The client uses the received challenge to encrypt the password, and sends the encrypted password
7.
in an EAP-Response/MD5 Challenge packet to the network access device.
The network access device relays the EAP-Response/MD5 Challenge packet in a RADIUS
8.
Access-Request packet to the authentication server.
71
Advertisement
Table of Contents
Troubleshooting
