Chapter 5

•• 802.1X  Indicates that the RADIUS server is used for 802.1X authentication.

•• All  Indicates that the RADIUS server is used for authenticating user name and passwords, and 802.1X port authentication.

UsetheAddtoListbuttontoaddtheRADIUSconfiguration to the RADIUS Table at the bottom of the screen.

Security > TACACS+

The device provides Terminal Access Controller Access Control System (TACACS+) client support. TACACS+ provides centralized security for validation of users accessing the device. TACACS+ provides a centralized user management system, while still retaining consistency with RADIUS and other authentication processes. The TACACS+ protocol ensures network integrity through encrypted protocol exchanges between the device and TACACS+ server.

Security > TACACS+

Host IP Address  Displays the TACACS+ Server IP address.

Priority  Displays the order in which the TACACS+ servers are used. The default is 0.

Source IP Address  Displays the device source IP address used for the TACACS+ session between the device and the TACACS+ server.

Key String  Defines the authentication and encryption key for TACACS+ server. The key must match the encryption key used on the TACACS+ server.

Authentication Port  Displays the port number through which the TACACS+ session occurs. The default is port 49.

Timeout for Reply  Displays the amount of time that passes before the connection between the device and the TACACS+ server times out. The field range is 1–30seconds.

Advanced Configuration

Status  Displays the connection status between the device and the TACACS+ server. The possible field values are:

•• Connected  There is currently a connection between the device and the TACACS+ server.

•• Not Connected  There is not currently a connection between the device and the TACACS+ server.

Single Connection  Maintains a single open connection between the device and the TACACS+ server when selected

Use the Add to List button to add the TACACS+ configuration to the TACACS+ table at the bottom of the screen.

Security > 802.1x Settings

Port based authentication enables authenticating system users on a per-port basis via an external server. Only authenticated and approved system users can transmit and receive data. Ports are authenticated via the RADIUS server using the Extensible Authentication Protocol (EAP).

Security > 802.1x Settings

Enable 802.1x  Select the checkbox to enable 802.1x authentication.

Port  Indicates the port name.

Status Port Control  Specifies the port authorization state. The possible field values are as follows:

•• Force-Unauthorized The controlled port state is set to Force-Unauthorized (discard traffic).

•• Auto  The controlled port state is set by the system.

•• Force-Authorized The controlled port state is set to Force-Authorized (forward traffic).

Enable Periodic Reauthentication  Permits immediate port reauthentication.

WebView Switches

37

Page 43 Page 45
Page 44
Image 44
Linksys SRW2016, SRW248G4, SRW2048, SRW2024, SRW224G4 manual Security TACACS+, Security 802.1x Settings
Page 43 Page 45

SRW2016, SRW224G4, SRW2024, SRW2048, SRW248G4 specifications

The Linksys SRW2048 is a robust Layer 2 managed switch that caters to the networking needs of small to medium-sized businesses. Designed with performance and reliability in mind, it provides features that ensure optimal network efficiency and security.

One of the standout features of the SRW2048 is its 48 10/100/1000 Mbps Gigabit Ethernet ports, enabling high-speed data transfer and seamless connectivity for various devices within the network. This makes it ideal for environments with heavy data traffic, ensuring minimal latency and high performance.

The SRW2048 also supports advanced Layer 2 management features, including VLAN (Virtual Local Area Network) support, which allows users to segment the network into smaller, manageable sections. This is crucial for improving security and performance, as it reduces unnecessary traffic and potential broadcast storms. With a VLAN configuration, businesses can group users and devices based on function or department, ensuring efficient communication within teams.

In addition to VLAN capabilities, the Linksys SRW2048 incorporates Quality of Service (QoS) features. This technology prioritizes critical network traffic, such as voice over IP (VoIP) and video conferencing, ensuring that these applications receive the bandwidth they require for optimal performance. This is particularly beneficial for businesses that rely on real-time communication tools.

The switch also enhances security through features such as IEEE 802.1X port security, which ensures that only authorized users can access the network. The SRW2048 supports access control lists (ACLs), allowing administrators to set specific permissions for users and devices, further tightening security.

Linksys has also equipped the SRW2048 with a user-friendly web-based management interface, simplifying the process of configuring and monitoring network performance. This accessible interface allows IT personnel to quickly identify issues, manage traffic, and configure settings without extensive training.

Another notable characteristic of the Linksys SRW2048 is its robust build quality and reliability. With a metal chassis and fanless design, it maintains a low acoustic footprint and ensures passive cooling, making it suitable for office environments.

Overall, the Linksys SRW2048 is a feature-rich managed switch that combines advanced networking technologies, efficient performance, and security features to meet the diverse needs of modern businesses. Its scalability, manageability, and robust construction make it a valuable addition to any network infrastructure.
Top Page Image Contents