TP-Link TL-SG3109, TL-SL3452, TL-SL3428 manual Mapping Authentication Profiles

Page 32

Each of the tables contains the following fields:

Profile Name — Contains a list of user-defined authentication profile lists to which user-defined authentication profiles are added.

Methods — Defines the user authentication methods. The possible field values are:

None — Assigns no authentication method to the authentication profile.

Local — Authenticates the user at the device level. The device checks the user name and password for authentication.

RADIUS — Authenticates the user at the RADIUS server. For more information, see Defining RADIUS Server Settings.

Line — Authenticates the user using a line password.

Enable — Authenticates the user using an enable password.

Remove — Removes the selected authentication profile. The possible field values are:

Checked — Removes the selected authentication profile.

Unchecked — Maintains the authentication profiles.

2.Click . The Add Authentication Profile Page opens.

Figure 30: Add Authentication Profile Page

3.Define the Profile Method and enter the Profile Name fields.

4.Select the Authentication Method using the move arrow

.

5.Click . The authentication profile is defined, and the device is updated.

To modify an authentication profile:

1.Click System > Management Security > Authentication > Authentication Profiles. The Authentication Profiles Page opens.

2.Click . The Authentication Profile Settings Page opens:

Figure 31: Authentication Profile Settings Page

3.Select the Authentication Method using the move arrow

.

4.Click . The authentication method is selected, and the device is updated.

5.1.1.4 Mapping Authentication Profiles

After authentication profiles are defined, they can be applied to management access methods. For example, console users can be authenticated by Authentication Profile List 1, while Telnet users are authenticated by Authentication Method List 2. Authentication methods are selected using arrows. The order in which the methods are selected is the order by which the authentication methods are used.

To map authentication methods:

1.Click System > Management Security > Authentication > Authentication Mapping. The Authentication Mapping Page opens:

2 5

Image 32
Contents Embedded Web System User Guide Copyright & Trademarks FCC Statement Table of Contents Configuring Authentication Methods Defining Access ProfilesDefining Authentication Profiles Mapping Authentication ProfilesConfiguring Garp Configuring the Classic STP Defining STP PropertiesConfiguring Multicast Forwarding Defining GvrpBasic QoS Mode Advanced QoS ModeConfiguration Download Configuration UploadViewing Statistics GlossaryPreface Guide OverviewIntended Audience Getting Started Starting the TP-Link Embedded Web InterfaceInterface Components Understanding the TP-Link Embedded Web InterfaceClick . The TP-Link Embedded Web Interface Home Page opens Using the TP-Link Embedded Web Interface Management Buttons TP-Link Web Interface Configuration Management ButtonsDevice Representation TP-Link Web Interface Information ButtonsUsing Screen and Table Options Deleting Configuration InformationAdding Configuration Information Modifying Configuration InformationResetting the Device Click System General Reset. The Reset Page opensLogging Off from the Device Click . a confirmation message is displayedDefining Device Information System DescriptionSetting the System Time Configuring Daylight Savings TimeSystem Information Time Define the Date, Local Time and Time Zone Offset fields Daylight SavingsRecurring Configuring Sntp Sntp OverviewPolling for Unicast Time Information Polling for Anycast Time InformationSntp Properties Page contains the following fields Defining Sntp Global SettingsConfiguring Sntp Authentication To configure Sntp authentication Sntp Authentication Page contains the following fieldsCheck the Enable Sntp Authentication checkbox Click . The Add Sntp Authentication Page opensDefining Sntp Interface Settings Click . The Sntp Server is added, and the device is updatedSntp Servers Page contains the following fields Click . The Add Sntp Server Page opensSntp Interface Settings Page contains the following fields Check the Receive Server Updates optionClick . The Add Sntp Interface Page opens Select the InterfaceConfiguring System Logs Defining General Log PropertiesFollowing table lists the log severity levels System Log Severity Levels Severity Viewing Memory LogsViewing Flash Logs Click . The Add Syslog Server Page opens Defining System Log ServersTo view Flash memory logs Click . The Log server is defined and the device is updated Add Syslog ServerConfiguring Device Security Configuring Management SecurityConfiguring Authentication Methods Defining Access ProfilesAccess Profile Click . The Add Access Profile Page opensDefining Profile Rules Profile RulesAuthentication Profiles Page provides the following Defining Authentication ProfilesClick . The Profile Rule Settings Page opens Mapping Authentication Profiles Click . The Add Authentication Profile Page opensClick . The Authentication Profile Settings Page opens Define the Profile Method and enter the Profile Name fieldsAuthentication Mapping Authentication Mapping Page contains the following fieldsDefining TACACS+ Host Settings To define TACACS+ authentication settingsSession is permitted Define the Console, Telnet, and Secure Telnet SSH fieldsDefining Radius Server Settings Click . The TACACS+ Host Settings Page opensClick . The Add TACACS+ Host Page opens Select TACACS+ server entryRadius Click . The Add Radius Server Page opensConfiguring Passwords Click . The Radius Server Settings Page opensDefining Local Users Click . The Add Local User Page opensConfiguring Network Security Defining Line PasswordsDefining Enable Passwords Line Password Page contains the following fieldsDefining Network Authentication Properties Port-Based AuthenticationAdvanced Port-Based Authentication Network Security OverviewDefining Port Authentication Properties Port Authentication Page contains the following fieldsConfiguring Multiple Hosts Click . The Port Authentication Settings Page opensTo define authenticated users Defining Authentication HostsClick . The Multiple Host Settings Page opens Configuring Traffic Control Managing Port SecurityClick . The Port Security Settings Page opens Enabling Storm ControlStorm Control Cast B, cast M tbd Cast M, cast tbd Cast tbdDefining IP Addresses Defining IP AddressingDefining IP Addresses Click . The Add IP Interface Page opensDefining the Default Gateway Click . The IP Interface Settings Page opensEnter the name of the User Defined Default Gateway Defining Dhcp AddressesARP Page contains the following fields Defining ARPTo define ARP Defining Domain Name System Defining DNS ServersDNS Server Page contains the following fields  Type Displays the IP address type. The possibleConfiguring Host Mapping Host Mapping Page contains the following fieldsAdd DNS Host Enter the Host Name and IP AddressConfiguring Interfaces Configuring PortsInterface Configuration Settings Click . The parameters are saved, and the device is updatedConfiguring LAGs Click . The LAG Membership Settings Page opensDefining LAG Members To define LAG membersConfiguring Lacp LAG Membership Settings Page contains the following fieldsClick . The Lacp Parameters Settings Page opens Lacp Parameters Page contains the following fieldsDefining Vlan Properties Configuring VLANsDefine the Port Priority and Lacp Timeout settings Modify the Vlan Name and Disable Authentication fields Defining Vlan MembershipVlan Member Properties Page contains the following fields Click . The Vlan properties are savedDefining Vlan Interface Settings Vlan Interface Settings Page contains the following fieldsTo define Vlan membership Vlan Member Membership Page contains the following fieldsDefining Garp Configuring GarpClick . The Vlan / LAG Interface Settings Page opens To define Gvrp on the device Defining GvrpGarp Parameters Page contains the following fields Gvrp Parameters Configuring Static Addresses Forwarding Database Static AddressesConfiguring Dynamic Forwarding Addresses Click . The Add Forwarding Database Page opensTo define the dynamic forwarding addresses  Clear Table Clears the Current Address TableSelect the Interface, the MAC Address, and the Vlan ID Select an Address Table Sort KeyConfiguring the Classic STP Defining STP PropertiesClick System Bridging Info Spanning Tree STP Properties. The STP Properties Page opensDefining STP Interface Settings Complete the Spanning Tree State and Bridge Settings fieldsClick the STP enable checkbox Define the fields STP Interface Settings Page contains the following fieldsClick . The STP Interface Settings Page opens Configuring the Rapid STP RstpDefining Mstp Properties Configuring the Multiple STPClick . The Rstp Settings Page opens Define the Region Name, Revision and Max Hops fields Configuring Mstp InstancesClick . The device information is updated Configuring Mstp Vlan Instances Configuring Mstp Interface SettingsMstp Vlan Instance Configuration Page opens Mstp Interface Settings Page contains the following fieldsMstp Interface Settings Modify the Port Priority and Path CostConfiguring Multicast Forwarding Igmp Snooping Page contains the following fieldsClick the Enable Igmp Snooping Status checkbox Click . The Multicast Global Parameters Settings Page opensDefining Multicast Bridging Groups To define multicast groupsIgmp Port/LAG Members Table Control Settings Click . The Multicast Group Settings Page opensMulticast group statically in the Current Row Join a Multicast groupPort is not attached to a Multicast router or switch Defining Multicast Forward All ParametersMulticast Forward All Page contains the following fields ForbiddenDefining Snmp Security Snmp v1 and v2cSnmp Define the Local Engine ID and Use Default fields Defining Snmp Global ParametersDefining Snmp Views Snmp Security Views Page contains the following fieldsDefining Snmp Group Profiles Click . The Add Snmp View Page opensClick . The Add Snmp Group Profile Page opens Click . The Snmp Group Profile Settings Page opensDefining Snmp Group Members Click . The Snmp Group Membership Settings Page opens Addition to the fields in the Snmp Security GroupMembership Page, The Add Snmp Group Membership Contains the following fieldsDefining Snmp Communities Snmp Communities Basic TableSnmp Communities Advanced Table Snmp Security Communities Page is divided intoConfiguring Snmp Notification Settings Device is updated To modify Snmp Group Membership settingsDefining Snmp Notification Properties Defining Notification FiltersClick . The Add Snmp Notification Filter Page opens Defining Notification ReceiversSnmp Notification FiIter Page contains the following fields Snmp Notification Receiver Page c is divided into SNMPv1,2c Notification RecipientSNMPv3 Notification Recipient Click . The Snmp Notification Receiver Settings Page opens Click . The Add Snmp Notification Receiver Page opensMapping to Queues Configuring Quality of ServiceQuality of Service Overview Following table contains the VPT to Queue default settings VPT Default Mapping TableDscp Default Mapping Table QoS ModesEnabling Quality of Service Enabling Quality of ServiceBasic QoS Mode Advanced QoS ModeCoS Settings Defining QueuesMapping Queues Mapping CoS Values to QueuesMapping QoS Values to Queues  SchedulingDscp to Queue Managing System Files Downloading System FilesDownload Type To download system filesConfiguration Download Uploading System FilesFirmware Download Upload TypeConfiguration Upload Activating Image FilesCopying System Files Software Image UploadSelect Copy Configuration Select Restore Configuration Factory DefaultsPerforming Device Diagnostics Configuring Port MirroringTo modify port mirroring settings Click . The Port Mirroring Settings Page opensViewing Integrated Cable Tests Click the Remove checkbox for selected item, and clickViewing Optical Transceivers Optical Transceivers Page contains the following fieldsViewing Statistics Viewing Interface StatisticsViewing Device Interface Statistics Interface Statistics Page contains the following fieldsViewing Etherlike Statistics Open the Interface StatisticsClick . The interface statistics counters are cleared Etherlike Statistics Page contains the following fieldsViewing Gvrp Statistics Open the Etherlike StatisticsManaging Rmon Statistics Viewing EAP StatisticsOpen the Gvrp Statistics Click . The Gvrp interface statistics counters are clearedRmon Statistics Page contains the following fields  Configuring Rmon History  Defining Rmon AlarmsViewing Rmon Statistics Configuring Rmon History Defining Rmon History ControlOpen the Rmon Statistics Rmon History Control Page contains the following fieldsViewing the Rmon History Table Rmon History Table Page contains the following fieldsConfiguring Rmon Events Defining Rmon Events ControlRmon Events Control Page contains the following fields Click . The Add Rmon Event User Page opensClick System Statistics Rmon Events. Defining Rmon AlarmsViewing the Rmon Events Logs Click . The Edit Rmon Alarm User Page opens Click . The Add Rmon Alarm User Page opensTo modify an Rmon alarm user 103 Glossary Boot Version BootPClass of Service BackplaneDuplex Mode ClientCollision Combo PortEthernet FlappingFlow Control FragmentIeee 802.1d Ieee 802.1pEEE 802.1q Image FileAuthenticates the origin of the communication Limited geographical areaProcess Processing, as there is more information to processNode PacketPolicing PortRJ-11 Connector RJ-45 ConnectorRunning Configuration Stand-alone ModeSubnet Mask TelnetTrap Trunking71035590
Related manuals
Manual 32 pages 61.46 Kb Manual 32 pages 10.85 Kb

TL-SG3109, TL-SL3428, TL-SL3452 specifications

The TP-Link TL-SL3428 is a feature-rich Ethernet switch designed for small to medium-sized business environments. It is part of TP-Link’s JetStream series, which emphasizes reliability, performance, and robust management capabilities. Built with 28 10/100/1000 Mbps ports, the TL-SL3428 provides sufficient bandwidth to support a wide range of network applications.

One of the standout features of the TL-SL3428 is its support for Layer 2 management protocols. This allows for more granular control and optimized performance across network segments. The switch supports VLAN (Virtual Local Area Network) segmentation, which enhances network security and efficiency by isolating various types of traffic. This feature is particularly useful in larger organizations where different departments or teams may require separate network environments.

The TL-SL3428 also includes advanced QoS (Quality of Service) capabilities. This functionality prioritizes traffic based on predefined rules, which ensures that critical applications receive the necessary bandwidth to function optimally. With QoS implementation, users can experience minimized latency, leading to better performance in VoIP and video conferencing applications.

In terms of redundancy and reliability, the switch also supports Link Aggregation Control Protocol (LACP), enabling multiple connections to be combined for increased bandwidth and failover support. This feature significantly enhances network resilience, ensuring minimal downtime during failures.

Power over Ethernet (PoE) support is another important characteristic of the TL-SL3428. With PoE capabilities, this switch can deliver electrical power along with data over the same Ethernet cable, simplifying installation and reducing the need for additional wiring. This is especially advantageous for IP devices like cameras, access points, and VoIP phones.

Security features are abundant in the TL-SL3428 as well. It implements port security, storm control, and DHCP snooping, all of which contribute to a secure network infrastructure. The switch’s management capabilities can be accessed through a user-friendly web interface, making it easier for IT administrators to configure and monitor network activities.

Overall, the TP-Link TL-SL3428 is an exemplary choice for businesses looking to enhance their network performance with advanced management features, security protocols, and reliability. Its combination of speed, flexibility, and manageability make it a valuable tool for any growing organization.