Local Users | Allied Telesis AT-9724TS specs

This screen allows you to set the following features:

Parameter	Description
Unit	Choose the Switch ID number of the Switch in the switch stack to be modified.
From [ ] To [ ]	Enter the port or ports to be set.
AdmCtrlDir	Sets the administrative-controlled direction to either in or both.
	If in is selected, control is only exerted over incoming traffic through the port you selected in the first field.
	If both is selected, control is exerted over both incoming and outgoing traffic through the controlled port
PortControl	selected in the first field.
	This allows you to control the port authorization state.
	Select forceAuthorized to disable 802.1X and cause the port to transition to the authorized state without any
	authentication exchange required.This means the port transmits and receives normal traffic without 802.1X-
	based authentication of the client.
	If forceUnauthorized is selected, the port will remain in the unauthorized state, ignoring all attempts by the client
	to authenticate.The Switch cannot provide authentication services to the client through the interface.
	If Auto is selected, it will enable 802.1X and cause the port to begin in the unauthorized state, allowing only
	EAPOL frames to be sent and received through the port.The authentication process begins when the link state
	of the port transitions from down to up, or when an EAPOL-start frame is received.The Switch then requests
	the identity of the client and begins relaying authentication messages between the client and the authentication
	server.
	The default setting is Auto.
TxPeriod	This sets the TxPeriod of time for the authenticator PAE state machine.This value determines the period of
QuietPeriod	an EAP Request/Identity packet transmitted to the client.The default setting is 30 seconds.
	This allows you to set the number of seconds that the Switch remains in the quiet state following a failed
SuppTimeout	authentication exchange with the client.The default setting is 60 seconds.
	This value determines timeout conditions in the exchanges between the Authenticator and the client.The
ServerTimeout	default setting is 30 seconds.
	This value determines timeout conditions in the exchanges between the Authenticator and the authentication
MaxReq	server.The default setting is 30 seconds.
	The maximum number of times that the Switch will retransmit an EAP Request to the client before it times out
ReAuthPeriod	of the authentication sessions.The default setting is 2.
	A constant that defines a nonzero number of seconds between periodic reauthentication of the client.The
ReAuth	default setting is 3600 seconds.
	Determines whether regular reauthentication will take place on this port.The default setting is Disabled.

Click Apply to implement your configuration changes.To view configurations for the 802.1X Authenticator Settings on a port-by-port basis, see the 802.1X Authenticator Settings table.

Local Users

In the configuration folder, open the Port Access Entity folder and click Local users to open the 802.1x Local User Table Configuration window. This window will allow the user to set different local users on the Switch.

Figure 6- 77. 802.1x Local User Table Configuration and 802.1x Local User Table window

Enter a User Name, Password and confirmation of that password. Properly configured local users will be displayed in the 802.1x Local User Table in the same window.

Allied Telesyn AT-9724TS High-Density Layer 3 Stackable Gigabit Ethernet Switch

87

Image 88

Allied Telesis AT-9724TS specifications Local Users

Contents

AT-9724TS Electrical Safety and Emission Statement Table of Contents RIP 133 Purpose of This Guide PrefaceHow This Guide is Organized Document Conventions Bold font European Support Numbers Returning Products FTP Server Regional Locations Tell Us What You Think Switching Technology IntroductionEthernet Technology Fast Ethernet Gigabit Ethernet Technology Switch Description Features Installing the SFP ports PortsFront Panel Components RFC1493 Bridge LED Indicators LED DescriptionRear Panel Components Side-Panel Components Installation Package ContentsInstalling the Switch without a Rack Before You Connect to the Network Installing the Switch in a Rack Prepare Switch for installation on a desktop or shelf Mounting the Switch in a Standard 19 Rack Power OnPower Failure External Redundant Power System Switch To End Node Connecting the SwitchSwitch to Hub or Switch Connecting To Network Backbone or Server Stacking and the AT-9724TS Stacking Limitations Utilizing a Ring Topology Stacking in a Ring Architecture Introduction to Switch Management First Time Connecting to the Switch Password Protection Snmp Settings MIBs TrapsIP Address Assignment Connecting Devices to the Switch Assigning the Switch an IP Address Login to Web Manager Introduction to Web-based Switch ConfigurationIntroduction Areas of the User Interface Web-based User InterfaceAreaFunction Web Pages Switch Information Configuring The SwitchClick the Switch Information link in the Configuration menu IP Address BootpDhcp Setting the Switchs IP Address using the Console Interface Advanced SettingsVlan Name Specified or Management Station IP Addresses are assigned Box Information Port Configuration Lowest priority number in the stack is the Master switchTo configure switch ports Priority Stack Port Description Parameter Description StateSpeed/Duplex Flow Control Port Mirroring To configure a mirror portLink Aggregation Understanding Port Trunk Groups 10. Link Aggregation Group Configuration window Add Lacp Port Setting 12. Lacp Port Setting and Lacp Port Information window MAC Notification Global Settings History size Setting is 1 secondSpecified.The default setting is MAC Notification MAC Notification Port Settings IgmpIgmp Versions 1 Parameter Description Unit Type Meaning Igmp Snooping Vlan ID Static Router Ports Spanning Tree 802.1s MstpFollowing parameters can be set VID Vlan ID STP Bridge Global Settings 802.1w Rapid Spanning TreePort Transition States Edge Port 21. STP Bridge Global Settings STP compatible MST Configuration Table Msti ID Msti Displays the Msti ID previously set by the user Msti ID of the Cist is 0 and cannot be alteredParameter Msti Port Information Parameter Description Instance IDInternal cost 0=Auto Priority STP Instance Settings Parameter Description Instance TypeInstance Status Instance Priority Forward Delay Parameter Description Designated Root BridgeExternal Root Cost Regional Root Bridge STP Port Settings Vlan ID VID Forwarding & Filtering Unicast ForwardingMAC Address Static Multicast Forwarding VIDMulticast MAC Address Not be a member of the Static Multicast Group Vlan Description VLANs Understanding Ieee 802.1p PriorityIeee 802.1Q VLANs Some relevant terms 802.1Q Vlan Tags IngressFiltering Transmit Bits 39.Adding an Ieee 802.1Q Tag Default VLANs Port Vlan IDTagging and Untagging Ingress Filtering Switch Ports Port-based VLANsVlan Segmentation Vlan and Trunk Groups Static Vlan Entry Protocol Type Header in Hexadecimal FormPage Advertisement Protocol ID Gvrp Setting Port Settings Tag None Egress Forbidden Traffic Control GvrpIngress Check Acceptable Frame Type Admin State Port SecurityMax. Learning Addr Mode MAC Address Switch Port Lock EntriesVlan Name Be deleted Advantages of QoS 18 QoSUnderstanding QoS Disables the limit Bandwidth ControlNolimit Packets Weight fair QoS Scheduling MechanismOutput Scheduling Parameter Description Strict Parameter Description Max. Packets Configuring the Combination QueueBe specified 802.1p Default Priority 802.1p User Priority 55. Setup Forwarding Ports window Traffic Segmentation System Log Server 57. System Log Servers Add Following parameters can be set Status Choose Enabled or Disabled to activate or deactivate Parameter Description IndexServer IP Severity Sntp Settings Current Time Settings +/- Hhmm DST Repeating Settings Time Zone and DSTMinutes Enter the month DST will start on, each year Access Profile Table Configuring the Access Profile Table 61.Access Profile Table Ethernet Vlan Shown below is the Packet Content Mask configuration window Source IP Mask Destination IP MaskDscp Protocol Port Offset Access ID Replace DscpSource IP Destination IPPage Source MAC Source Destination MAC Destination 71.Access Rule Configuration Packet Content Mask 72.Access Rule Display window Packet Content Mask Priority Offset MAC-Based Network Access Control Port-Based Network Access ControlSwitch Configure Authenticator 75 .1X Authenticator Settings window Local Users From and To PAE System ControlCapability Initializing Ports for Port Based FromAuth PAE State Backend State Reauthenticate Ports for Port Based Initializing Ports for MAC Based Reauthenticate Ports for MAC Based Radius Server Layer 3 IP Networking Layer 3 Global Advanced Settings Setting Up IP Interfaces To setup IP Interfaces on the Switch Network Number IP Address MD5 Key Table Configuration Parameter Description Interface NameSubnet Mask Secondary Route Redistribution Settings Route Source Metric Type Static/Default Route IP address of the Static/Default RouteFollowing parameters may be set or viewed ParameterDescription Dest Protocol Src Protocol Type Metric Route Preference Settings Backup State IP address aboveRoute Type Validity Range Default Value Permanently set on the switch and unconfigurable Parameter Description RIP Ospf IntraStatic Ospf Inter Static ARP Table Parameter Description IP AddressIP address of the ARP entry MAC address of the ARP entry RIP Command Codes RIP ConfigurationRIP Version 1 Message Format RIP 1 Message Setting Up RIP 102 Link-State Algorithm Shortest Path AlgorithmOspf Cost Ospf Shortest Path Tree 104 Link-State Packets Areas and Border Routers105 Ospf Authentication Message Digest Authentication MD-5Simple Password Authentication Backbone and Area Adjacencies Designated Router ElectionBuilding Adjacency Adjacencies on Point-to-Point Interfaces Hello Packet Backup Designated Router Interface address on the network Database Description PacketOn the network 109 Link-State Request Packet Field Description OptionsBit MS bit Octets Version No Link-State Update Packet111 Link-State Advertisement Formats Link-State Acknowledgment Packet112 Link State Advertisement Header Router Links AdvertisementsLink State ID ASBR,AS External Link Link State Checksum Successive Link State Sequence numbers Field Description Bit AreaField Description Type Link ID IP Type of Service that this metric refers to Network Links AdvertisementsSummary Link Advertisements Field Description Autonomous Systems External Link Advertisements Type of Service that the following cost is relevant toField Description Network Mask General Ospf Settings Ospf Area ID SettingParameter Description Ospf Route ID Current Route ID Ospf Interface Settings Stub Default CostParameter Description Area ID Stub Import Summary LSA Auth Type Auth. Key ID RouterMetric Type, as specified in the previous parameter Retransmit Time Seconds Ospf Virtual Interface Settings Ospf Area Aggregation Settings Ospf Host Route SettingsNetwork Number Lsdb Type Dhcp / Bootp Relay Dhcp / Bootp Relay InformationFollowing fields are configured for Ospf host route Ospf domain DHCP/BootP Relay Settings DNS Relay Domain Name Resolution Configuring DNS Relay InformationDNS Relay Static Settings Mapping Domain Names to Addresses Non-owner response Ping Vrrp Configuration125 Vrid Vrrp Interface SettingsDisplay Admin. State Preempt ModeVrid Critical IP Address Virtual IP Address Virtual MAC AddressVirtual Router State Master IP Address IP Multicast Routing Protocol Igmp Interface Configuration129 Dvmrp Interface Configuration Dvmrp Global SettingDvmrp Interface Settings 130 PIM-DM Interface Configuration PIM-DM ConfigurationNeighbor Timeout Interval Probe Interval Previously defined IP interface Displays the IP address for the IP interface named aboveJoin/Prune Interval Seconds Security Management Security IPUser Accounts 133 Admin and User Privileges Management Admin UserUser Account Management 134 Policy & Parameters Access Authentication Control135 Applications Authentication Settings Authentication Server Group SettingsLogin Method List Enable Method List 137 Timeout Authentication Server HostsRetransmit Login Method Lists 139 Enable Method Lists 140 Local Enable Password Parameter Description Method List NameMethod 1, 2, 3 Method list Enable Admin Local Enabled field will result in a fail messageParameterDescription 142 Secure Socket Layer SSL Download CertificateParameter Description Certificate Type Key File Name Cert.der Configuration 144 Secure Shell SSH SSH ConfigurationSSH Algorithm 3DES-CBC AES128-CBCAES192-CBC AES256-CBC SSH User Authentication HMAC-SHA1HMAC-MD5 HMAC-RSA Auth. Mode Parameter Description User NameHost Name Host IP Snmp Manager Snmp User Table Group Name Snmp VersionAuth-Protocol Priv-Protocol Snmp View Table 151 Snmp Group Table Parameter Description View NameSubtree OID 152 Snmp Community Table Configuration Access Right Contents of the MIBs on the SwitchSnmp Host Table Parameter Description Community Name Snmp Engine ID Parameter Description Host IP AddressCommunity String or Snmp V3 User Name Monitoring Port UtilizationCPU Utilization Parameter Description Time Interval Received RX Packets157 158 UMB Cast RX 159 Transmitted TX 160 Tx Packets Analysis window table for Bytes and Packets 161 Errors 162 Crc Error Record NumberUnder Size Over Size 164 Size LateColl Because the medium was busyExColl Packet SingColl Stacking Information Device Status Prom Version A Star topologyRuntime Version Version Illustrations MAC Address 168 Switch History Log Find Down menusAddress Vlan ID of the Vlan the port is a member Igmp Snooping Group Igmp Snooping ForwardingParameter Description Sequence 170 Authenticator State Port Access ControlBrowse Router Port Authenticator Statistics Capability is disabledParameter Description Auth PAE State 802.1x Rx Invalid Authenticator Rx Error RecognizedFollowing fields can be viewed 173 Authenticator Session Statistics Authenticator Diagnostics Radius Authentication Radius Accounting 177 Browse IP Address Layer 3 Feature178 Browse Routing Table Browse ARP TableBrowse IP Multicast Forwarding Table 179 Browse Igmp Group Table Ospf MonitoringBrowse Ospf Lsdb Table 180 Browse Ospf Neighbor Table Ospf Virtual Neighbor Browse Dvmrp Routing Table Dvmrp MonitoringBrowse Dvmrp Neighbor Address Table Browse Dvmrp Routing Next Hop Table PIM MonitoringPIM Neighbor Address Table 183 Switch Maintenance Tftp ServiceDownload Configuration File Download Firmware Upload Configuration Multiple Image ServicesUpload Log Firmware Information Config Firmware Image Update TimeBOX Size Parameter Description Image Ping TestActive Reset Parameter Description Save Only save configSave Changes 188 Reboot Device Following menu is used to restart the SwitchLogout 189 Appendix a Technical Specifications GeneralPhysical & Environmental EMC Performance 191 Lightning Danger Electrical Type Class 1 Equipment Gefahr Durch BlitzschlagGeräte DER Klasse Vorsicht Elektrisk Klasse 1-UDSTYR Fare Under UvejrElektrische Toestellen VAN Klasse Métalliques accessibles à l’utilisateur SalamaniskuvaaraPericolo DI Fulmini Elettricità Dispositivi DI Classe Fare for Lynnedslag Fare Arbeid Ikke på utstyr eller Kabler i TordenværPeligro DE Rayos Electrico Equipo DEL Tipo Clase Elektriskt TYP Klass 1 Utrustning Fara FÖR Blixtnedslag196