Table of Contents
Advertisement
EAP (Port) Configuration Screen
Table 3-9 EAP Port Configuration Screen Field Descriptions (Continued)
Use this field...
Backend State
(Cont'd)
Port Control
(Selectable)
3-38
Accessing Local Management
To...
• idle: The port is currently not involved in any authentication, but is
ready to begin one. Move to idle after completion.
• initialize: The port is initializing the relevant backend variables and
is not ready to begin an authentication. Move to idle after
completion.
Set the port control mode enabling network access for each port.
Modes include:
• Auto: In this mode, frames are forwarded according to the
authentication state of each port. When no default policy has been
applied to the port, and its authentication state is unauthorized, the
port discards all incoming and outgoing frames. If a default policy is
applied to the port and its authentication state is unauthorized,
frames are forwarded according to the configuration specified for
that policy.
Once authorized, a port forwards frames according to its current
configuration. A policy string may be returned by the Radius Server
in the filter id attribute. This policy string can reference a set of
VLAN and priority classification rules pre-configured in the switch.
If a policy string is returned as part of the user authorization process,
then frames are forwarded according to the configuration specified
by that policy.
If no policy is returned, the switch forwards frames using the
existing default policy configuration, if it exists, or the current
configuration for the port if no default policy exists. If the default
policy is used, then we interpret that default policy to now be active
on the controlled port. Although continuing to use the default policy
after authorization may be a legal configuration, there are no
practical uses.
If a policy string is returned that has no definition in the switch, then
this is an illegal configuration and the port is not authenticated.
Therefore frame forwarding in this case follows the rules outlined
above for an unauthorized port.
Advertisement
Table of Contents
