Authentication Server - D-Link DES-1228/ME User Manual

Managed 10/100mbps metro ethernet switch
Hide thumbs Also See for DES-1228/ME:
Table of Contents

Advertisement

Authentication Server

The Authentication Server is a remote device that is connected to the same network as the Client and Authenticator, must be
running a RADIUS Server program and must be configured properly on the Authenticator (Switch). Clients connected to a port on
the Switch must be authenticated by the Authentication Server (RADIUS) before attaining any services offered by the Switch on
the LAN. The role of the Authentication Server is to certify the identity of the Client attempting to access the network by
exchanging secure information between the RADIUS server and the Client through EAPOL packets and, in turn, informs the
Switch whether or not the Client is granted access to the LAN and/or switches services.
Authenticator
The Authenticator (the Switch) is an intermediary between the Authentication Server and the Client. The Authenticator servers
two purposes when utilizing 802.1X. The first purpose is to request certification information from the Client through EAPOL
packets, which is the only information allowed to pass through the Authenticator before access is granted to the Client. The
second purpose of the Authenticator is to verify the information gathered from the Client with the Authentication Server, and to
then relay that information back to the Client.
Three steps must be implemented on the Switch to properly configure the Authenticator.
1.
The 802.1X State must be Enabled. (DES-1228/ME Web Management Tool)
2.
The 802.1X settings must be implemented by port (Security / 802.1X / Configure 802.1X Authenticator Parameter)
3.
A RADIUS server must be configured on the Switch. (Security / 802.1X / Authentic RADIUS Server)
DES-1228/ME Layer 2 Fast Ethernet Managed Switch
Figure 10- 14. The Authentication Server
Figure 10- 15. The Authenticator
158

Hide quick links:

Advertisement

Table of Contents
loading

Table of Contents