SMC Networks SMCGS10C-SMART Management Manual page 79

Web smart 10-port ge switch

Hide thumbs Also See for SMCGS10C-SMART:

Specifications (2 pages)

Installation manual (65 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

248

249

250

251

252

253

254

255

256

257

258

259

260

261

262

263

264

265

266

267

268

269

270

271

272

273

274

275

276

277

278

279

280

281

282

Table of Contents

The operation of 802.1X on the switch requires the following:

The switch must have an IP address assigned (see

◆

RADIUS authentication must be enabled on the switch and the IP

◆

address of the RADIUS server specified. Backend RADIUS servers are

configured on the Authentication Configuration page (see

802.1X / MAC-based authentication must be enabled globally for the

◆

switch.

The Admin State for each switch port that requires client authentication

◆

must be set to 802.1X or MAC-based.

When using 802.1X authentication:

◆

Each client that needs to be authenticated must have dot1x client

■

software installed and properly configured.

When using 802.1X authentication, the RADIUS server and 802.1X

■

client must support EAP. (The switch only supports EAPOL in order

to pass the EAP packets from the server to the client.)

The RADIUS server and client also have to support the same EAP

■

authentication type - MD5, PEAP, TLS, or TTLS. (Native support for

these encryption methods is provided in Windows 7, Windows Vista,

Windows XP, and in Windows 2000 with Service Pack 4. To support

these encryption methods in Windows 95 and 98, you can use the

AEGIS dot1x client or other comparable client software.)

MAC-based authentication allows for authentication of more than one user

on the same port, and does not require the user to have special 802.1X

software installed on his system. The switch uses the client's MAC address

to authenticate against the backend server. However, note that intruders

can create counterfeit MAC addresses, which makes MAC-based

authentication less secure than 802.1X authentication.

ATH

Configuration, Security, Network, NAS

SAGE

UIDELINES

When 802.1X is enabled, you need to configure the parameters for the

authentication process that runs between the client and the switch (i.e.,

authenticator), as well as the client identity lookup process that runs

between the switch and authentication server. These parameters are

described in this section.

ARAMETERS

These parameters are displayed:

– 79 –

| Configuring the Switch

HAPTER

Configuring Security

page

42).

page

109).

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

Need help?

Do you have a question about the SMCGS10C-SMART and is the answer not in the manual?

SMC Networks SMCGS10C-SMART Management Manual page 79

Hide quick links:

Need help?

Questions and answers

Related Products for SMC Networks SMCGS10C-SMART

SMC Networks SMCGS10C-SMART Management Manual page 79

Hide quick links:

Need help?

Questions and answers

Related Manuals for SMC Networks SMCGS10C-SMART

Related Products for SMC Networks SMCGS10C-SMART

Table of Contents