User Access Security; Authentication; Security Options - Extreme Networks Summit 300-48 Software User's Manual

Extreme summit 300-48: software user guide

Hide thumbs Also See for Summit 300-48:

Software user's manual (198 pages)

Hardware installation manual (394 pages)

Hardware installation manual (112 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

Table of Contents

Unified Access Security

• Single authentication infrastructure — Single set of policies, RADIUS, and certificate servers

Table 43 summarizes the security options available with the Summit 300-48 switch. Campus mode refers

to a network with multiple users who connect at different places. ISP mode refers to a network with

stationary users who access the network through the same port each time. The per user VLANs

assignment column indicates whether users can be placed in a VLAN when they are authenticated

according to the given method.

Table 43: Security Options

Security Feature

802.1x - Single Supplicant

802.1x - Multiple Supplicants

Web-based Netlogin Single

Supplicants

Web-based Netlogin Multiple

Supplicants

MAC Radius - Single Client

MAC Radius - Multiple Clients

User Access Security

Effective user security meets the following objectives:

• Authentication — Assuring that only approved users are connected to the network at permitted

locations and times.

• Privacy — Assuring that user data is protected.

Authentication

The authentication process is responsible for screening users who attempt to connect to the network and

granting or denying access based on the identity of the user, and if needed, the location of the client

station and the time of day. The authentication function also includes secure encryption of passwords

for user screening.

For an authentication scheme to be practical and effective, it must be compatible with the

currently-installed client software base. That requires accommodating multiple versions of software,

including legacy systems with older-generation security support. Effective authentication is mutual,

from client-to-network and network-to-client. Finally, authentication requires the appropriate

authentication servers.

The Unified Access Architecture provides authentication methods that meet all these requirements,

while also permitting flexibility for individual network environments.

Authentication Method: Open

The Summit 300-48 switch and associates Altitude 300 wireless ports, support 802.11 open system

authentication, in which the station identifies the SSID. Although open authentication can be acceptable

Campus Mode

Wired

Wireless

Wired

Per User VLANs

ISP Mode

Wireless

Wired

Assignment

Wireless

Summit 300-48 Switch Software User Guide

Table of Contents

User Access Security; Authentication; Security Options - Extreme Networks Summit 300-48 Software User's Manual

User Access Security

Authentication

Related Manuals for Extreme Networks Summit 300-48

Related Content for Extreme Networks Summit 300-48

Table of Contents