Compound Authentication Guest Vlan Settings (Ri And Ei Mode Only) - D-Link xStack DGS-3120 Series Reference Manual
Xstack dgs-3120 series layer 3 managed gigabit ethernet switch web ui reference guide
Hide thumbs
Also See for xStack DGS-3120 Series:
- Cli reference manual (1150 pages) ,
- Manual (852 pages) ,
- Reference manual (813 pages)
Table of Contents
Advertisement
xStack® DGS-3120 Series Layer 3 Managed Gigabit Ethernet Switch Web UI Reference Guide
The fields that can be configured are described below:
Parameter
Authorization Network State
Authentication Server
Failover
Unit
From Port / To Port
Authentication Methods
Authorized Mode
VID List
State
Click the Apply button to accept the changes made for each individual section.
Compound Authentication Guest VLAN Settings (RI and EI
Mode Only)
Users can assign ports to or remove ports from a guest VLAN.
To view this window, click Security > Compound Authentication > Compound Authentication Guest VLAN
Settings as shown below:
Description
Click the radio buttons to enable of disable the Authorization Network State.
Click the radio buttons to configure the authentication server failover function.
Local. The switch will resort to using the local database to authenticate the
client. If the client fails on local authentication, the client is regarded as un-
authenticated, otherwise, it authenticated.
Permit. The client is always regarded as authenticated. If guest VLAN is
enabled, clients will stay on the guest VLAN, otherwise, they will stay on the
original VLAN.
Block (default setting). The client is always regarded as un-authenticated.
Select the unit you want to configure. (EI and SI Mode Only)
Use the drop-down menus to select a range of ports to be enabled as
compound authentication ports.
The compound authentication method options include: None, Any (MAC,
802.1X, JWAC or WAC), 802.1X+IMPB, IMPB+JWAC, IMPB+WAC,
MAC+IMPB, and MAC+JWAC. (RI and EI Mode Only)
None - all compound authentication methods are disabled.
Any (MAC, 802.1X, JWAC or WAC) - if any of the authentication methods
pass, then access will be granted. In this mode, MAC, 802.1X, JWAC and
WAC can be enabled on a port at the same time. In Any (MAC, 802.1X,
JWAC or WAC) mode, whether an individual security module is active on a
port depends on its system state.
802.1X+IMPB - 802.1X will be verified first, and then IMPB will be verified.
Both authentication methods need to be passed.
IMPB+JWAC - JWAC will be verified first, and then IMPB will be verified. Both
authentication methods need to be passed.
IMPB+WAC - WAC will be verified first, and then IMPB will be verified. Both
authentication methods need to be passed.
MAC+IMPB - MAC will be verified first, and then IMPB will be verified. Both
authentication methods need to be passed.
MAC+JWAC - MAC will be verified first, and then JWAC will be verified. Both
authentication methods need to be passed.
Toggle between Host-based and Port-based. When Port-based is selected, if
one of the attached hosts passes the authentication, all hosts on the same
port will be granted access to the network. If the user fails the authorization,
this port will keep trying the next authentication method. When Host-based is
selected, users are authenticated individually.
Enter a list of VLAN ID.
Use the drop-down menu to assign or remove the specified VID list as
authentication VLAN(s).
362
- Quick Links:
- Login to the Web Manager
- Reset
Hide quick links:
Advertisement
Table of Contents
