ZyXEL Communications P-870HN-5xb Support Notes page 78

P-870HN-5xb Support Notes
When the 802.1x is enabled, the authenticator controls the port authorization
state by using the following control parameters. The following three authentication
control parameters are applied in the Wireless AP.
1. Force Authorized: Disables the 802.1x and causes the port to transit to the
authorized state without any authentication exchange required. The port transmits
and receives the normal traffic without the 802.1x-based authentication of client.
This is the default port control setting. While the AP is setup as Force Authorized,
the Wireless client (supported 802.1x client or none-802.1x client) can always access
the network.
2. Force Unauthorized: Causes the port to remain in the unauthorized state, ignoring
all attempts by the client to authenticate. The authenticator cannot provide
authentication services to the supplicants through the port. While AP is setup as
Force Unauthorized, Wireless clients (supported 802.1x client or none-802.1x client)
never have the access for the network.
3. Auto: Enables the 802.1x and causes the port to begin in the unauthorized state,
allowing only the EAPOL frames to be sent and received through the port. The
authentication process begins, when the link state of port transitions from down to
up or when an EAPOL-start frame is received requests the identity of the client and
begins relaying authentication messages between supplicant and the authentication
server. Each supplicant attempting to access the network is uniquely identified by
All contents copyright (c) 2009 ZyXEL Communications Corporation.