Linksys SRW2024P manual Security Tab 802.1x Settings, Security 802.1x Settings

Page 58

24-Port 10/100/1000 Gigabit Switch with Webview and PoE

Security Tab - 802.1x Settings

Port based authentication enables authenticating system users on a per-port basis via an external server. Only authenticated and approved system users can transmit and receive data. Ports are authenticated via the RADIUS server using the Extensible Authentication Protocol (EAP).

The IEEE 802.1X (dot1X) standard defines a port-based access control procedure that prevents unauthorized access to a network by requiring users to first submit credentials for authentication. Access to all switch ports in a network can be centrally controlled from a server, which means that authorized users can use the same credentials for authentication from any point within the network

The operation of 802.1X on the Switch requires the following:

The Switch must have an IP address assigned.

RADIUS authentication must be enabled on the Switch and the IP address of the RADIUS server specified.

802.1X must be enabled globally for the Switch.

Each Switch port that will be used must be set to dot1X “Auto” mode.

Each client that needs to be authenticated must have dot1X client software installed and properly configured.

The RADIUS server and 802.1X client support EAP. (The Switch only supports EAPOL in order to pass the EAP packets from the server to the client.)

The RADIUS server and client also have to support the same EAP authentication type – MD5. (Some clients have native support in Windows, otherwise the dot1x client must support it.)

To enable 802.1X System Authentication Control, select Radius.

When 802.1X is enabled, you need to configure the parameters for the authentication process that runs between the client and the Switch (that is, authenticator), as well as the client identity lookup process that runs between the Switch and authentication server. These parameters are described in this section.

Operation Mode. Allows single or multiple hosts (clients) to connect to an 802.1X-authorized port. (Options: Single-Host, Multi-Host; Default: Single-Host)

Maximum Count. The maximum number of hosts that can connect to a port when the Multi-Host operation mode is selected. (Range: 1-1024; Default: 5)

Mode. Sets the authentication mode to one of the following options:

Chapter 5: Using the Web-based Utility for Configuration

Figure 5-29: Security - 802.1x Settings

49

Security Tab - 802.1x Settings

Image 58
Contents Port 10/100/1000 Gigabit Switch with Webview and PoE Copyright and Trademarks Word definitionTable of Contents Port 10/100/1000 Gigabit Switch with Webview and PoE Startup Menu Procedures Appendix B Windows Help Appendix C Downloading using XmodemGigabit Ethernet Fiber Optic Cabling List of Figures Front Panel23 Port Status 23 Statistics Port Utilization 52 Admin Forwarding Database Introduction WelcomePort 10/100/1000 Gigabit Switch with Webview and PoE Getting to Know the Switch LEDsOther switches or routers PortsLAN Ports Gigabit Expansion PortsConsole Port Overview Connecting the SwitchMaximum Cabling Distances From Maximum Distance Before You Install the Switch Desktop Placement Placement OptionsRack-Mount Placement Uplinking the Switch Web-based Utility for ConfigurationUsing the Console Interface for Configuration Configuring the HyperTerminal ApplicationConnecting to the Switch through a Telnet Session COM1 PropertiesConfiguring the Switch through the Console Interface Switch Main MenuSystem Configuration Menu System Information Management Settings User & Password Settings HTTP/HTTPS File Management Restore System Default Settings Port Status PoE Configuration Help Port 10/100/1000 Gigabit Switch with Webview and PoE Using the Web-based Utility for Configuration Accessing the Web-based UtilityDevice Information Setup Tab SummarySystem Information PoE Information Setup Tab Network SettingsIP Configuration IdentificationManual Setup Tab TimeSet Time AutomaticPort Management Tab Port Settings Sntp ServersPort Setting Port Settings Port Setting DetailPort Management Tab Link Aggregation Port Management Link Aggregration Port Management Tab Lacp 10 Port Management LacpPort Management Tab PoE Power Settings 11 Port Management PoE Power SettingsSingle Vlan Vlan Management Tab Port SettingsVlan Management Tab Create Vlan Vlan RangeSwitch Port Mode Vlan Management Tab Ports to VlanVlan Management Tab Vlan to Ports 15 Vlan Management Vlan to PortsStatistics Tab Rmon Statistics 17 Statistics Rmon StatisticsStatistics Tab Rmon History History Control TableStatistics Tab Rmon Alarm 20 Statistics Rmon AlarmPort 10/100/1000 Gigabit Switch with Webview and PoE Event Setting Statistics Tab Rmon EventsStatistics Tab Port Utilization Statistics Tab 802.1x StatisticsACL Tab IP Based ACL 25 ACL IP Based ACLPort 10/100/1000 Gigabit Switch with Webview and PoE ACL Tab MAC Based ACL 26 ACL Mac Based ACLSecurity Tab ACL Binding 27 Security ACL BindingSecurity Tab Authentication Servers 28 Security Athentication ServersSecurity Tab 802.1x Settings 29 Security 802.1x SettingsSecurity 802.1x Settings Port Settings Security Tab Ports Security 30 Security Ports SecuritySecurity Tab Https Settings Security Tab Management ACLSecurity Tab SSH Settings 33 Security SSH SettingsSSH Host-Key Settings 34 Security SSH Host-Key SettingsQoS Tab CoS Settings QoS TabCoS to Queue QoS Tab Queue SettingsPort to CoS QoS Tab Dscp Settings QoS Tab Diffserv Settings39 QoS Diffserv Settings Edit Class Element Class Map40 QoS Diffserv Settings Edit Policy Element Policy MapQoS Tab Diffserv Port Binding QoS Tab BandwidthSpanning Tree Tab Global Settings Spanning Tree TabSpanning Tree Tab STP Settings 44 Spanning Tree STP SettingsSpanning Tree Tab STP Port Settings 45 Spanning Tree STP Port SettingsPort 10/100/1000 Gigabit Switch with Webview and PoE Port 10/100/1000 Gigabit Switch with Webview and PoE Multicast Tab Global Settings 46 Multicast Global SettingsMulticast Tab Static Member Ports Multicast Tab Static Router PortsMulticast Tab Member Ports Query Multicast Tab Router Member Ports QueryAdmin Tab User Authentication 51 Admin User AuthenticationAdmin Tab Forwarding Database Address AgingAdmin Tab Snmp Dynamic Address QueryAdmin Tab Log 54 Admin Log55 Admin Log Flash Logging Admin Tab Port Mirroring 57 Admin Port MirroringAdmin Tab Cable Test Admin Tab PingAdmin Tab Save Configuration Admin Tab Jumbo FrameAdmin Tab Firmware Upgrade Admin Tab Http UpgradeAdmin Tab Reboot Admin Tab Factory DefaultGigabit Ethernet AppendixAAboutGigabitEthernetandFiberOpticCablingFiber Optic Cabling Shared Resources Appendix B Windows HelpNetwork Neighborhood/My Network Places Appendix C Downloading using Xmodem Startup Menu ProceduresFigure C-3 Browse Appendix D Glossary Port 10/100/1000 Gigabit Switch with Webview and PoE Port 10/100/1000 Gigabit Switch with Webview and PoE Port 10/100/1000 Gigabit Switch with Webview and PoE Port 10/100/1000 Gigabit Switch with Webview and PoE Port 10/100/1000 Gigabit Switch with Webview and PoE Port 10/100/1000 Gigabit Switch with Webview and PoE Appendix E Specifications Cable Diagnostics Tftp upgradeXmodem upgrade Port MirroringPort-based and 802.1q based VLANs Management VlanTo 158F -20 to 70C Operating Temperature 32 to 104F 0 to 50COperating Humidity 10% to 90% Storage Humidity 10% to 95% Appendix F Warranty Information Limited WarrantyAppendix G Regulatory Information FCC StatementPort 10/100/1000 Gigabit Switch with Webview and PoE Port 10/100/1000 Gigabit Switch with Webview and PoE Port 10/100/1000 Gigabit Switch with Webview and PoE Port 10/100/1000 Gigabit Switch with Webview and PoE 100 Appendix H Contact Information

SRW2024P specifications

The Linksys SRW2024P is a robust and versatile managed switch designed to meet the networking needs of small to medium-sized businesses. This switch features 24 Ethernet ports, making it suitable for connecting multiple devices while delivering exceptional performance and reliability. One of the standout features of the SRW2024P is its Power over Ethernet (PoE) capability, allowing users to power devices like IP cameras, VoIP phones, and wireless access points directly from the switch, eliminating the need for additional power sources and simplifying installations.

The SRW2024P supports a range of advanced technologies, including VLANs (Virtual Local Area Networks), which enable network segmentation and improved security by isolating different network segments. This segmentation can help enhance performance and control broadcast domains effectively. Additionally, the switch supports Quality of Service (QoS), allowing users to prioritize network traffic, ensuring that critical applications receive the necessary bandwidth for optimal performance. This feature is particularly beneficial in environments with high-definition video streaming or VoIP communications.

Another critical aspect of the Linksys SRW2024P is its support for robust network security protocols. With features like 802.1X port-based authentication, network administrators can enforce strict access control policies, ensuring that only authorized devices can connect to the network. The switch also provides basic security features such as MAC address filtering and access control lists (ACLs), enhancing the overall security of the network.

The easy-to-use web-based management interface makes it simple for administrators to configure and monitor the switch. It provides real-time information about network performance, port status, and traffic statistics, allowing for effective troubleshooting and management. The SRW2024P also includes the capability for SNMP (Simple Network Management Protocol), enabling integration with third-party network management solutions for more advanced monitoring and control.

In terms of physical characteristics, the Linksys SRW2024P is designed for reliable performance in various environments, with a compact rack-mountable chassis. This design allows for easy installation in standard 19-inch racks, making it a practical choice for businesses looking to optimize their network infrastructure.

In summary, the Linksys SRW2024P managed switch combines advanced networking features, ease of management, and PoE capabilities, making it an ideal choice for growing businesses looking to enhance their connectivity and network performance. With its reliable security measures, VLAN support, and QoS capabilities, the SRW2024P provides a solid foundation for a robust and scalable network.