LevelOne GTL-2691 User Manual

Page 387

Advertising
background image

C

HAPTER

13

| Security Measures

Configuring 802.1X Port Authentication

– 387 –

a port, the switch will initiate authentication when the port link state

comes up. It will send an EAP-request/identity frame to the client to

request its identity, followed by one or more requests for authentication

information. It may also send other EAP-request frames to the client

during an active connection as required for reauthentication.

Server Timeout – Sets the time that a switch port waits for a response

to an EAP request from an authentication server before re-transmitting

an EAP packet. (Fixed Setting: 10 seconds)

Re-authentication Status – Sets the client to be re-authenticated

after the interval specified by the Re-authentication Period. Re-

authentication can be used to detect if a new device is plugged into a
switch port. (Default: Disabled)

Re-authentication Period – Sets the time period after which a

connected client must be re-authenticated. (Range: 1-65535 seconds;

Default: 3600 seconds)

Re-authentication Max Retries – The maximum number of times the

switch port will retransmit an EAP request/identity packet to the client

before it times out the authentication session. (Range: 1-10;

Default: 2)

Intrusion Action – Sets the port’s response to a failed authentication.

Block Traffic – Blocks all non-EAP traffic on the port. (This is the

default setting.)

Guest VLAN – All traffic for the port is assigned to a guest VLAN.

The guest VLAN must be separately configured (See

"Configuring

VLAN Groups" on page 200

) and mapped on each port (See

"Configuring Network Access for Ports" on page 333

).

Authenticator PAE State Machine

State – Current state (including initialize, disconnected, connecting,

authenticating, authenticated, aborting, held, force_authorized,

force_unauthorized).

Reauth Count – Number of times connecting state is re-entered.

Current Identifier – Identifier sent in each EAP Success, Failure or

Request packet by the Authentication Server.

Backend State Machine

State – Current state (including request, response, success, fail,

timeout, idle, initialize).

Request Count – Number of EAP Request packets sent to the

Supplicant without receiving a response.

Advertising
Popular Brands
Popular manuals