Manuals / 3Com / Computer Equipment / Switch

3Com 2924-PWR manual Defining Port-Based, Authentication, 802.1X

Models: 2924-PWR

1 248

Download 248 pages 25.7 Kb

Page 57

Defining Port-Based Authentication (802.1X)

57

Defining Port-Based	Port-based authentication authenticates users on a per-port basis via an
Authentication	external server. Only authenticated and approved system users can
(802.1X)	transmit and receive data. Ports are authenticated via the RADIUS server
	using the Extensible Authentication Protocol (EAP). Port-based
	authentication includes:
	■ Authenticators — Specifies the device port which is authenticated
	before permitting system access.
	■ Supplicants — Specifies the host connected to the authenticated
	port requesting to access the system services.
	■ Authentication Server — Specifies the server that performs the
	authentication on behalf of the authenticator, and indicates whether
	the supplicant is authorized to access system services.
	Port-based authentication creates two access states:
	■ Controlled Access — Permits communication between the
	supplicant and the system, if the supplicant is authorized.
	■ Uncontrolled Access — Permits uncontrolled communication
	regardless of the port state.

This section includes the following topics:

■Viewing 802.1X Authentication

■Defining 802.1X Authentication

Image 57

3Com 2924-PWR manual Defining Port-Based, Authentication, 802.1X

Contents

3Com Baseline Switch 2924-PWR Plus 3Com Corporation Campus Drive Marlborough User Guide OverviewManaging System Information Provides information for About this Guide Conventions RelatedDocumentation Contents Viewing Basic Settings Configuring Ports Configuring Igmp Snooping Managing Power Over Ethernet Devices Device Specifications and Features Glossary Getting Started Hardware Features Hardware Features 2924-PWRSwitch 2924-PWR Plus 24-Port-front panel Indicators LED StatusDescribes the meanings of the LEDs System Switch InstallingMethods of Managing a Switch Setting Up forManagement Web Interface ManagementRefer to Setting Up Web Interface Management on Switch SetupRefer to Setting Up Snmp Management V1 or V2 on Snmp ManagementInitial Switch Setup and Management Flow Diagram Manual IP Configuration Automatic IP Configuration using DhcpPrerequisites Interface CLIManually set the IP Address using the Console Port Connecting the Workstation to the SwitchIpSetup xxx.xxx.xxx.xxx mmm.mmm.mmm.mmm ggg.ggg.ggg.gggg Getting Started Setting Up Web InterfaceChoosing a Browser \ ping Over the NetworkUpgrading Software using Enter yes and press Return. The system reboots the switchFollowing prompt displays Using the 3COM WEB Interface Starting the 3Com Accessing the 3Com Web InterfaceWeb Interface Multi-Session Web ConnectionsWeb Interface Enter Network Password3Com Web Interface Home Understanding 3Com Web InterfaceWeb Interface Components To access the Device Representation Click Device Summary Device ViewManagement Buttons Using Screen Viewing Configuration InformationTable Options Click Administration IP Setup. The IP Setup Page opens Adding Configuration InformationSystem Access Modify Modify the fields Click . The access fields are modifiedSystem Access Remove Latest configuration to be saved to the flash memory ConfigurationTo save the device configuration Click . The configuration is savedResetting the Device Click Administration Reset. The Reset Page opensClick . a confirmation message is displayed User Name and Password Restoring Factory DefaultsDevice Logging OffTo log off the device ClickViewing Basic Settings Click Device Summary. The Device Summary Page opens To view the Device Summary SettingsPage Color Key Click Device Summary Color Key. The Color Key Page opensManaging Device Security Managing Device Security System Access Summary Interface To define System AccessTo modify System Access To remove users Click . The Users are deleted, and the device is updatedTo configure the Radius client Managing Device Security Authentication Defining Port-Based802.1X Click Security 802.1X Summary. The 802.1X Summary Page opens Defining Port-Based Authentication Click Security 802.1X Setup. The 802.1X Setup Page opens 802.1X Global Settings802.1X Port Settings Managing Device Security MAC Based ACL Summary To view MAC Based ACLsTo configure MAC-based ACLs Click Device ACL MAC Based ACL Setup. The MAC Based ACLMAC Based ACL Setup Page contains the following fields Add Rules to ACL Select Create ACL To modify a MAC-based ACL rule ModifyManaging Device Security MAC Based ACL Remove Page contains the following fields Click Device ACL MAC Based ACL Remove. The MAC Based ACLCheck Remove ACL IP Based ACL Summary Managing Device Security IP Based ACL Setup To configure IP-based ACLsManaging Device Security Defining Access Control Lists Select Create ACL IP Based ACL Modify Modify RuleManaging Device Security Defining Access Control Lists Click Device ACL IP Based ACL Remove. The IP Based ACL IP Based ACL Remove Updated ACL Binding Summary To define ACL Binding ACL Binding SetupACL Binding Remove To remove ACL BindingManaging Device Security To define Broadcast Storm Traffic Broadcast Storm SetupInformation Device View Managing System Information Page System Name To configure the System NameEnabled on the device Local SettingsTo configure the System Time System Time Setup Page contains the following fieldsManaging System Information Page Monitor users have no access to this Define the fields Click or . The device is reset To reset the device configurationConfiguring Ports Page Port Administration Summary To view Port Settings101 Port Administration Setup To configure Port Settings103 To view Port Details Click Port Administration Detail. The Port Detail Page opens105 Aggregating Ports Link Aggregation Summary To create Link Aggregation Blue Displays a member of the aggregation being createdDeselected ports Summary To modify Link Aggregation Link Aggregation Modify Page includes the following fieldsBlue Displays a member of the modified aggregation Summary Link Aggregation Remove Page includes the following fields To remove Link AggregationLacp Summary Lacp Modify 115 Configuring Vlans Vlan Click Device Vlan Vlan Detail. The Vlan Detail Page opensVlan Port Detail Vlan Setup Page contains the following fields Click Device Vlan Setup. The Vlan Setup Page opensCreate To create VLANsRename Vlan Click Device Vlan Modify VLAN. The Modify Vlan Page opens To edit Vlan SettingsConfiguring Vlans Modify Vlan Port To modify Port Vlan SettingsClick Device Vlan Remove. The Vlan Remove Page opens To delete VLANsAddress Information To define an IP interface IP Setup Page contains the following fieldsConfiguring ARP Settings ARP Settings Summary ARP Settings Setup To configure ARP entriesTo remove ARP entries ARP Settings RemoveConfiguring ARP Settings Address Tables ConfiguringDatabases is forwarded immediately to the port. The Dynamic Traffic is seen for a certain period, are erasedTo view address table settings Table SettingsPort Summary Configuring Address Tables To add MAC addresses to the Address Table Address TableConfiguring Address Tables To define the Aging Time Address Table Setup Page contains the following fieldPort Remove To remove portsConfiguring IP and MAC Address Information Address Table Remove To remove MAC addresses from the Address TableConfiguring IP and MAC Address Information Configuring Igmp Snooping To configure Igmp Snooping Click Device Igmp Snooping Setup. The Igmp Snooping SetupOpens Select Enable or Disable from the Igmp Status list Configuring Spanning Tree Spanning Tree Summary Configuring Spanning Tree 149 Global Settings To configure Spanning Tree SetupSpanning Tree Setup Page contains the following fields Bridge Settings Designated Root Spanning Tree Modify To modify Spanning TreeConfiguring Spanning Tree Snmp version Snmp version 2c Configuring SnmpTo define Snmp communities Snmp Communities SetupInsert New Community Enables adding an Snmp community Snmp ManagementCommunity String Snmp Communities Remove To remove Snmp communitiesTo define Snmp traps Snmp Traps SetupSnmp Traps Remove To remove Snmp trapsSnmp Traps Remove Page contains the following fields Service CoS Summary Click Device QoS CoS Summary. The CoS Summary Page opensClick Device QoS CoS Setup. The CoS Setup Page opens To configure CoS SettingsCoS to Queue Summary CoS to Queue Setup To configure CoS values to queuesDscp to Queue Summary Can be assigned to queue To view the Dscp QueueTo map CoS to Queues Be assigned to queueTrust Setup Click Device QoS Trust Setup. The Trust Setup Page opensBandwidth Summary Ingress Rate LimitEgress Shaping Rates Bandwidth Setup Page contains the following fields To configure Bandwidth SettingsEgress Shaping Rate Received unevenly. The system supports one Voice Vlan Defining VoiceThere are two operational modes for IP Phones Tagged packets are used for all communicationsVoice Vlan Summary Voice Vlan Setup Voice Vlan Port Setup Device is updated Defining Voice Vlan Voice Vlan Port Details To view Voice Vlan Port Detail SettingsTo view Voice Vlan OUI Settings OUI ListVoice Vlan OUI Summary Page contains the following fields Voice Vlan OUI Modify Voice Vlan OUI Modify Page contains the following fieldsDefining Voice Vlan Managing System Files 185 To backup System files Configuration UploadTo restore System files Configuration DownloadSoftware Download To download the software imageActive Image Active Image Page contains the following fieldsEthernet Devices Port PoE Summary Page displays the following information Device Power DisplayPorts Power Display Click Port PoE Setup. The Port PoE Setup Page opens Managing Power Over Ethernet Devices System Log Severity Levels Managing System LogsLogging Display To view LoggingTo define Log Parameters Logging SetupManaging System Logs 199 Viewing Statistics Port Statistics Summary To view Rmon statisticsViewing Statistics 203 Managing Device Diagnostics Configuring Port Mirroring Port Mirroring Setup To enable port mirroringConfiguring Port Mirroring Port Mirroring Remove To remove port mirroringTo view cables diagnostics DiagnosticsViewing Cable Copper cable attached to a portManaging Device Diagnostics To test cables DiagnosticsSupervisor 3Com NetworkDirector Access ManagerNetwork Node HP OpenViewManager Application such as 3Com Enterprise Management Suite EMSPhysical EnvironmentalElectrical Features of the Baseline Switch 2924-PWR PlusSwitch Features Interface with Crossover Mdix SSL Vlan Null Modem Cable RJ-45 to RS-232 25-pin PC-AT Serial Cable10/100 and 1000BASE-T RJ-45 connections Ethernet Port RJ-45 Pin AssignmentsEthernet Port RJ-45 Pin Assignments Problem TroubleshootingSolutions Problems Possible Cause Solution Contact 3Com With the Command Getting StartedLine Interface Sessions CLI CommandsSyntax Default Configuration User GuidelinesExample Parameters SyntaxSummary Syntax Summary Default ConfigurationFollowing example displays an IP address configured manually No default IP address is defined for interfacesUpgrade Tftp Server IP AddressDestination File NameFile Type Syntax Initialize Syntax Reboot Syntax Logout Default Configuration Logout The Logout command terminates the CLI sessionSyntax Password Default Configuration Password The Password command changes the user’s passwordAddress Resolution Access Control ListBoot Protocol Service Dscp239 MIB Group LAG Link Aggregation See Port TrunkPort Authentication See Ieee Terminal Access AuthenticationController Access Remote243 Solve Problems Online Service BenefitsWarranty ServicesDownloads Access SoftwareContact Us Support and RepairCountry Telephone Number US and Canada Telephone Technical Support and Repair 800 876 Regulatory Notices