DGS-3024 Gigabit Ethernet Switch Manual

network by exchanging secure information between the RADIUS server and the Client through EAPOL packets and, in turn, informs the Switch whether or not the Client is granted access to the LAN and/or Switch services.

Figure 7- 50. Authentication Server

Authenticator

The Authenticator (the Switch) is an intermediary between the Authentication Server and the Client. The Authenticator serves two purposes when utilizing 802.1x. The first purpose is to request certification information from the Client through EAPOL packets, which is the only information allowed to pass through the Authenticator before access is granted to the Client. The second purpose of the Authenticator is to verify the information gathered from the Client with the Authentication Server, and to then relay that information back to the Client.

Three steps must be implemented on the Switch to properly configure the Authenticator.

1.The 802.1x State must be enabled to Port Base on the Switch Information (Advanced Settings) window under Switch 802.1x (Configuration > Advanced Settings).

2.The 802.1x settings must be implemented by port. (Configuration > Port Access Entity > 802.1x Capability Settings).

3.A RADIUS server must be configured on the Switch on the Authentic RADIUS Server Setting window (Configuration > Port Access Entity > RADIUS Server).

Figure 7- 51. Authenticator

75

Page 89
Image 89
D-Link DSL-G604T manual Authenticator, Authentication Server