(see
page
155). Static addresses are treated as authenticated
without sending a request to a RADIUS server.
When port status changes to down, all MAC addresses are cleared
■
from the secure MAC address table. Static VLAN assignments are
not restored.
RADIUS-Assigned QoS Enabled - Enables or disables this feature for
◆
a given port. Refer to the description of this feature under the System
Configuration section.
RADIUS-Assigned VLAN Enabled - Enables or disables this feature
◆
for a given port. Refer to the description of this feature under the
System Configuration section.
◆
Guest VLAN Enabled - Enables or disables this feature for a given
port. Refer to the description of this feature under the System
Configure section.
Port State - The current state of the port:
◆
Globally Disabled - 802.1X and MAC-based authentication are
■
globally disabled. (This is the default state.)
Link Down - 802.1X or MAC-based authentication is enabled, but
■
there is no link on the port.
Authorized - The port is in Force Authorized mode, or a single-
■
supplicant mode and the supplicant is authorized.
Unauthorized - The port is in Force Unauthorized mode, or a
■
single-supplicant mode and the supplicant is not successfully
authorized by the RADIUS server.
X Auth/Y Unauth - The port is in a multi-supplicant mode. X
■
clients are currently authorized and Y are unauthorized.
◆
Restart - Restarts client authentication using one of the methods
described below. Note that the restart buttons are only enabled when
the switch's authentication mode is globally enabled (under System
Configuration) and the port's Admin State is an EAPOL-based or MAC-
Based mode. Clicking these buttons will not cause settings changed on
the page to take effect.
Reauthenticate - Schedules reauthentication to whenever the
■
quiet-period of the port runs out (EAPOL-based authentication). For
MAC-based authentication, reauthentication will be attempted
immediately. The button only has effect for successfully
authenticated clients on the port and will not cause the clients to
get temporarily unauthorized.
Reinitialize - Forces a reinitialization of the clients on the port and
■
thereby a reauthentication immediately. The clients will transfer to
the unauthorized state while the reauthentication is in progress.
W
I
EB
NTERFACE
To configure 802.1X Port Security:
Click Configuration, Security, Network, NAS.
1.
– 87 –
| Configuring the Switch
C
4
HAPTER
Configuring Security