Allied Telesis AT-S63 User Manual
Page 371
AT-S63 Management Software Features Guide
Section VIII: Port Security
371
Figure 39. Single Operating Mode with Multiple Clients Using the Piggy-
back Feature - Example 1
Because the piggy-back mode is activated on the authenticator port, only
one client needs to be authenticated in order for all the clients to forward
traffic through the port. If the port is using the 802.1x authentication
method, then at least one client must have 802.1x client firmware and
provide a username and password during authentication. (The other
clients do not need 802.1x client firmware to forward traffic through the
port after one client is authenticated.)
If the switch port is set to MAC address-based authentication, 802.1 client
firmware is not required. The MAC address of the first client to forward
traffic through the port is used for authentication. When that client is
authenticated, all supplicants have access to the port.
As mentioned early, should the client who performed the initial log on fail
to reauthenticate when necessary or log out, the port reverts to the
unauthenticated state, blocking all traffic to and from all clients. Another
client must be authenticated in order for all remaining clients to continue to
forward traffic through the port.
AT-9400 Switch
FAULT
RPS
MASTER
POWER
CLASS 1
LASER PRODUCT
STATUS
TERMINAL
PORT
1
3
5
7
9
11
2
4
6
8
10
12
13
15
17
19
21
23R
14
16
18
20
22
24R
AT-9424T/SP
Gigabit Ethernet Switch
1
3
5
7
9
11
13
15
17
19
21
23R
2
4
6
8
10
12
14
16
18
20
22
24R
23
24
L/A
D/C
D/C
L/A
D/C
L/A
1000 LINK / ACT
HDX / COL
FDX
10/100 LINK / ACT
PORT ACTIVITY
L/A
1000 LINK / ACT
SFP
SFP
24
SFP
23
RADIUS
Authentication
Server
Port 6
Role: Authenticator
Operating Mode: Single
Piggy-back Mode: Enabled
Ethernet Hub or
Non-802.1x-compliant
Switch
Authenticated
Client
Unauthenticated
Clients