Managing Switch Security | 3Com 3CBLSF26H manual

Figure 3-72Port-Level LLDP Information Page

Select a port, and then the LLDP information of the port will be displayed in the Summary box. The displayed information includes LLDP status and statistics of the port and the status of the TLVs sent by the port.

Managing Switch Security

The Management Security section provides information for defining RADIUS authentication and port-based authentication.

This section includes the following topics:

z

z

z

z

Defining Port-Based Authentication (802.1X)

Defining Radius Client

Configuring LDB

Configuring Broadcast Storm Control

Defining Port-Based Authentication (802.1X)

Port-based authentication authenticates users on a per-port basis via an external server. Only authenticated and approved system users can transmit and receive data. Ports are authenticated via the RADIUS server using the Extensible Authentication Protocol (EAP). Port-based authentication includes:

z

z

z

Authenticators: Specifies the switch port which is authenticated before permitting system access.

Supplicants: Specifies the host connected to the authenticated port requesting to access the system services.

Authentication Server: Specifies the server that performs the authentication on behalf of the authenticator, and indicates whether the supplicant is authorized to access system services.

Port-based authentication creates two access states:

z

z

Controlled Access: Permits communication between the supplicant and the system, if the supplicant is authorized.

Uncontrolled Access: Permits uncontrolled communication regardless of the port state.

This section includes the following topics:

z

z

Defining 802.1X Authentication Viewing 802.1X Authentication

3-66

Image 90

3Com 3CBLSF26H manual Managing Switch Security, Defining Port-Based Authentication

Contents

User Guide Environmental Statement Organization Chapter ContentsAbout This Manual Conventions Obtaining Documentation Create FolderConvention Description Table of Contents Page Iii Page Summary of Hardware Features Introducing the SwitchOverview of the Switch Feature Description 1Baseline Switch 2226-SFP Plus 26-Port-front panel Front View Detail LED Status Indicators Status DescriptionOFF System Specifications Specification 2226-SFP 2426-PWR 2250-SFP Positioning the Switch Installing the SwitchPackage Contents Before You Begin Using the Mounting Kit Rack-Mounting or Free-Standing Supplying Power to the Switch Placing Units On Top of Each Other Using SFP Transceivers Checking for Correct OperationStatus Meaning Approved SFP Transceivers Inserting an SFP Transceiver3CSFP91 SFP SX 3CSFP92 SFP LX Removing an SFP Transceiver Configuring IP AddressPerforming Spot Checks Operation Automatic IP Configuration using Dhcp Manual IP Configuration Requirements for Accessing the Web Interface Choosing a Web BrowserPlatform Windows Windows XP Windows Vista Browser Logging On to the Web Interface Default User and PasswordUser Name Default Password Access Level Navigating the Web Interface Menu Item Description Snmp Vlan ACLLldp Buttons Lacp Configuring System Access Defining System Access Modifying System Access Removing System Access Viewing System Access Settings Configuring IP and MAC Address Information Defining IP Address Configuring ARP Settings Defining ARP SettingsRemoving ARP Entries Viewing ARP Settings Configuring MAC Address Table Adding MAC Addresses to the Address Table Defining Aging TimeVlan ID Removing MAC Addresses for the specific port Removing MAC Addresses from the Address Table Viewing Address Table Settings Viewing Port Summary Settings Configuring Port Configuring Port Basic Settings Defining Port Settings Viewing Port Settings Configuring PoE Viewing Port DetailsPvid Defining Port PoE Viewing PoE Viewing Port Statistics Refreshed. The possible field values are Configuring Vlan Creating VLANs Modifying Vlan Modifying Port Vlan Settings Renaming VLANs Removing VLANs Viewing Vlan Details 25VLAN Remove Viewing Vlan Port Details Aggregating Port OverviewLink Aggregation Types Configuring Link Aggregation Defining Link Aggregation Modifying Link Aggregation Removing Link Aggregation Viewing Link Aggregation Configuring Lacp Modify LacpViewing Lacp Configuring STP Defining STP Global Parameters Bpdu Modifying STP Interface Parameters STP Viewing STP Description Configuring Igmp Snooping Defining Igmp Snooping Configuring ACL Configuring MAC Based ACLDefining MAC Based ACL 29MAC Based ACL Setup Page item description Modifying MAC Based ACL Removing MAC Based ACL Viewing MAC Based ACL Configuring IP Based ACL Defining IP Based ACL Fields are Modifying IP Based ACL Removing IP Based ACL Viewing IP Based ACL Configuring ACL Binding Defining ACL BindingDscp Removing ACL Binding Viewing ACL Binding Configuring QoS Configuring CoSDefining CoS Configuring Queue Algorithm Viewing CoS Settings Configuring CoS to Queue Defining CoS to QueueHQ-WRR Configuring Dscp to Queue Viewing CoS to QueueDefining Dscp to Queue Viewing Dscp to Queue Configuring Trust Mode Configuring Bandwidth SettingsDefining Bandwidth Settings Viewing Bandwidth Settings Configuring Voice Vlan CIR Modifying OUI Definitions Defining Voice Vlan Global Settings Defining Voice Vlan Port Settings Viewing Voice Vlan Port Settings Viewing OUI Summaries Viewing Voice Vlan 63Voice Vlan OUI Summary Configuring Snmp Defining Snmp Communities Removing Snmp Communities Defining Snmp Traps Removing Snmp Traps Lldp Operating Mode Configuring LldpConfiguring Global Lldp Parameters Lldp Overview Configuring Port-Level Lldp Parameters TTL multiplier × Lldpdu sending interval Enable/disable Lldp on a port. Two options are Viewing Lldp Information LLDP-MED Viewing Port-Level Lldp Information Managing Switch Security Defining Port-Based Authentication Defining 802.1X Authentication Viewing 802.1X Authentication Defining Radius Client Configuring LDB Configuring LDB Parameters Configuring an Authentication Server Configuring a User Account Displaying LDB Configuring Broadcast Storm Control Defining Broadcast Storm ControlMAC Managing System Information Viewing Broadcast Storm Control Viewing Basic Settings Viewing Device Settings Configuring System Name Viewing Color KeysSFP Configuring System Time Save Configuration Resetting the Switch Managing System Files Backing up System Files Restoring Files Restoring the Software Image Managing System Logs Activating Image Files Configuring Logging Severity Level Message Viewing Logs Managing Switch Diagnostics Configuring Port MirroringDefining Port Mirroring Configuring Cable Diagnostics Configuring Cable DiagnosticsRemoving Port Mirroring Viewing Cable Diagnostics Resetting to Factory Defaults Forgotten PasswordReset the switch Forgotten Static IP Address Solving LED IssuesConfigure a new user Fiber cable is connected, but the Module Active LED is off All ports appear to show continual activity Getting Started with the Command Line Interface PrerequisitesLogging on to the CLI Complete online help CLI FeaturesOnline Help Partial online help Error message Description Command HistoryError Messages Operation Description Display ip CLI ConfigurationCommand Edit Press… To… Display management-vlan Display management-vlan Ip address dhcp-alloc Display versionIp address Display version Undo ip address dhcp-alloc Ip gatewayLocaluser Undo localuser name Management-vlan Management-vlan portManagement-vlan vlan-idundo management-vlan Ping Quit RebootReboot Quit Save RestoreRestore default Save Tftp update # Save current configuration of the switch Register Your Product Purchase Value-Added ServicesAccess Software Downloads Telephone Technical Support and Repair Contact Us Safety Information Important Safety Information Ices Statement FCC StatementInformation to the User CE Statement Europe Vcci Statement 100BASE-TX Glossary Description10BASE-T 1000BASE-LX Ietf DhcpIeee ISP LAN TCP/IP Located on the same LAN