How Does The Authentication Server Assign Diffserv Filters; What Is The Internal Authentication Server - Dell PowerConnect 8024 User Configuration Manual

Table 20-1. IEEE 802.1X Monitor Mode Behavior (Continued)
Case
Supplicant
Timeout
Port/Client
Authenticated
on Guest VLAN

How Does the Authentication Server Assign DiffServ Filters?

The PowerConnect 8000-series and 8100-series switches allow the external
802.1X Authenticator or RADIUS server to assign DiffServ policies to users
that authenticate to the switch. When a host (supplicant) attempts to
connect to the network through a port, the switch contacts the 802.1X
authenticator or RADIUS server, which then provides information to the
switch about which DiffServ policy to assign the host (supplicant). The
application of the policy is applied to the host after the authentication
process has completed.
For additional guidelines about using an authentication server to assign
DiffServ policies, see "Configuring Authentication Server DiffServ Filter
Assignments" on page 491.

What is the Internal Authentication Server?

The Internal Authentication Server (IAS) is a dedicated database for localized
authentication of users for network access through 802.1X. In this database,
the switch maintains a list of username and password combinations to use for
802.1X authentication. You can manually create entries in the database, or
you can upload the IAS information to the switch.
If the authentication method for 802.1X is IAS, the switch uses the locally
stored list of username and passwords to provide port-based authentication to
users instead of using an external authentication server.
NOTE:
The IAS database does not handle VLAN assignments or DiffServ policy
assignments.
Sub-case
Delete Guest
VLANID through
Dot1Q
Regular Dot1x
Port State: Deny
Port State: Deny
Configuring Port and System Security
Dot1x Monitor Mode
Port State: Deny
Port State: Permit
VLAN: Default PVID
of the port
465