2 802.1x misc – Signamax Managed Hardened PoE Industrial DIN-rail Mount Switch User Manual
Page 44
8 Security
39
access network resources in a restrained way. It enables supplicant systems that do not have
802.1x client installed to access specific network resources. It also enables supplicant
systems that are not authenticated to upgrade their 802.1x client programs.
With this function enabled:
After the maximum number retries have been made and there are still ports that have not
sent any response back, the switch will then add these ports to the Guest VLAN.
Users belonging to the Guest VLAN can access the resources of the Guest VLAN without
being authenticated. But they need to be authenticated when accessing external
resources.
The lower part of this page lists all 802.1x port status.
8.2.2 802.1x Misc
In 802.1 x authentication, the following timers are used to ensure that the supplicant system,
the switch, and the RADIUS server interact in an orderly way.
Quiet Period: Set the quiet-period, when a supplicant system fails to pass the
authentication; the switch quiets for the set period before it processes another authentication
request re-initiated by the supplicant system. During this quiet period, the switch does not
perform any 802.1x authentication-related actions for the supplicant system. The value is in
the range of 1 to 65535, and is set to 60 seconds by default.
Tx Period: Set the transmission timer, and is triggered in two cases. The first case is when
the client requests authentication, the switch sends a unicast request/identity packet to a
supplicant system and then triggers the transmission timer. The switch sends another
request/identity packet to the supplicant system if it does not receive the reply packet from the
supplicant system when this timer times out. The second case is when the switch
authenticates the 802.1x client which cannot request for authentication actively. The switch
sends multicast request/identity packets periodically through the port enabled by 802.1x