General steps – Allied Telesis AT-S63 User Manual
Page 653
AT-S63 Management Software Menus Interface User’s Guide
Section IV: Port Security
653
The number of packets transmitted and received by the switch port
during a supplicant’s session. (This information is sent only when the
client logs off.)
You can also configure the accounting feature to send interim updates so
you can monitor which clients are still active.
Here are a few guidelines to using the accounting feature:
The AT-S63 management software supports the Network level of
accounting, but not the System or Exec.
This feature is only available for ports operating in the Authenticator
role. No accounting is provided for ports operating in the Supplicant or
None role.
You must configure 802.1x Port-based Network Access Control as
explained in this chapter and designate the Authenticator ports.
You must also specify from one to three RADIUS servers. The
instructions for this are in “Configuring RADIUS” on page 771.
For instructions on configuring this feature, refer to “Configuring RADIUS
Accounting” on page 669.
General Steps
Following are the general steps for implementing 802.1x Port-based
Network Access Control and RADIUS accounting on the switch:
1. You must install RADIUS server software on one or more of your
network servers or management stations. Authentication protocol
server software is not available from Allied Telesyn. Funk Software
Steel-Belted Radius and Free Radius have been verified as fully
compatible with the AT-S63 management software.
Note
This feature is not supported with the TACACS+ authentication
protocol.
2. You need to install 802.1x client software on those workstations that
are to be supplicants. Microsoft WinXP client software and Meeting
House Aegis client software have been verified as fully compatible with
the AT-S63 management software.
3. You must configure and activate the RADIUS client software in the
AT-S63 management software. The default setting for the
authentication protocol is disabled. You will need to provide the
following information:
The IP addresses of up to three RADIUS servers.
The encryption key used by the authentication servers.