TP-Link TL-SG3424 User Manual page 64

24 gigabit l2 managed switch

Hide thumbs Also See for TL-SG3424:

Installation manual (32 pages)

User manual (3 pages)

Cli reference manual (285 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

page of 124

/ 124
Contents
Table of Contents
Bookmarks

Table of Contents

Enlarged version

If user ID and password is correct, the authentication server will

send a Radius-Access-Accept to the authenticator. If not correct,

the authentication server will send a Radius-Access-Reject.

When the authenticator PAE receives a Radius-Access-Accept, it

will send an EAP-Success to the supplicant. At this time, the

supplicant is authorized and the port connected to the supplicant

and under 802.1X control is in the authorized state. The supplicant

and other devices connected to this port can access the network. If

the authenticator receives a Radius-Access-Reject, it will send an

EAP-Failure to the supplicant. This means the supplicant is failed to

authenticate. The port it connected is in the unauthorized state, the

supplicant and the devices connected to this port won't be allowed

to access the network.

10.

When

the

supplicant

issue

Authentication server, the port you are using is set to be

unauthorized.

Bridge

Port connect

Access blocked

EAPOL-Start

EAPOL

Authenticator

EAP-Request/Identity

EAP-Response/Identity

EAP-Request

EAP-Response (cred)

EAP-Success

EAP-Failure

EAP-Logoff

Access allowed

Fig. 3-55

119

User Manual

EAP-Logoff

message

LAN

Radius Server

EAP

Radius

Radius-Access-Request

Radius-Access-Challenge

Radius-Access-Request

Radius-Access-Accept

Publication date: January, 2006

Revision A2

User Manual

Only MultiHost 802.1X is the type of authentication supported in the switch.

In this mode, for the devices connected to this port, once a supplicant is authorized,

the devices connected to this port can access the network resource through this

port.

802.1X Port-based Network Access Control function supported by the switch

is little bit complex, for it just support basic Multihost mode, which can distinguish

the device's MAC address and its VID. The following table is the summary of the

combination of the authentication status and the port status versus the status of port

mode, set in 802.1X Port mode, port control state, set in 802.1X port setting. Here

Entry Authorized means MAC entry is authorized.

Port Mode

Port Control

Disable

Don't Care

Multihost

Auto

Multihost

Auto

Multihost

ForceUnauthorized

Multihost

ForceAuthorized

Table 3-3

Publication date: January, 2006

Revision A2

120

Authentication

Port Status

Don't Care

Port Uncontrolled

Successful

Port Authorized

Failure

Port Unauthorized

Don't Care

Port Unauthorized

Don't Care

Port Authorized

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

TP-Link TL-SG3424 User Manual page 64

Hide quick links:

Related Manuals for TP-Link TL-SG3424

Related Products for TP-Link TL-SG3424

Table of Contents