NETGEAR 700 Series Managed Switch for Software v2.1 User Manual

700 Series Managed Switch User’s Guide for Software v2.1

C-2

802.1x Port-Based Authentication Overview

SM-10004-02

1.

The client sends an EAP-start message. This begins a series of message exchanges to
authenticate the client.

2.

The access point replies with an EAP-request identity message.

3.

The client sends an EAP-response packet containing the identity to the authentication server.

4.

The authentication server uses a specific authentication algorithm to verify the client's identity.
This could be through the use of digital certificates or other EAP authentication type.

5.

The authentication server will either send an accept or reject message to the access point.

6.

The access point sends an EAP-success packet (or reject packet) to the client.

7.

If the authentication server accepts the client, then the access point will transition the client's
port to an authorized state and forward additional traffic.

1

2

3

4

5

6

7