Manuals / Nortel Networks / Computer Equipment / Switch

Nortel Networks 42C4911 manual Extensible Authentication Protocol over LAN

Models: 42C4911

1 260
Download 260 pages 54.2 Kb
Page 68
Image 68

Alteon OS Application Guide

Extensible Authentication Protocol over LAN

Alteon OS can provide user-level security for its ports using the IEEE 802.1x protocol, which is a more secure alternative to other methods of port-based network access control. Any device attached to an 802.1x-enabled port that fails authentication is prevented access to the network and denied services offered through that port.

The 802.1x standard describes port-based network access control using Extensible Authentica- tion Protocol over LAN (EAPoL). EAPoL provides a means of authenticating and authorizing devices attached to a LAN port that has point-to-point connection characteristics and of pre- venting access to that port in cases of authentication and authorization failures.

EAPoL is a client-server protocol that has the following components:

„Supplicant or Client

The Supplicant is a device that requests network access and provides the required creden- tials (user name and password) to the Authenticator and the Authenticator Server.

„Authenticator

The Authenticator enforces authentication and controls access to the network. The Authenticator grants network access based on the information provided by the Supplicant and the response from the Authentication Server. The Authenticator acts as an intermedi- ary between the Supplicant and the Authentication Server: requesting identity information from the client, forwarding that information to the Authentication Server for validation, relaying the server’s responses to the client, and authorizing network access based on the results of the authentication exchange. The GbESM acts as an Authenticator.

„Authentication Server,

The Authentication Server validates the credentials provided by the Supplicant to deter- mine if the Authenticator should grant access to the network. The Authentication Server may be co-located with the Authenticator. The GbESM relies on external RADIUS servers for authentication.

Upon a successful authentication of the client by the server, the 802.1x-controlled port transi- tions from unauthorized to authorized state, and the client is allowed full access to services through the port. When the client sends an EAP-Logoff message to the authenticator, the port will transition from authorized to unauthorized state.

68 „ Chapter 2: Port-based Network Access Control

42C4911, January 2007

Page 67 Page 69
Page 68
Image 68
Nortel Networks 42C4911 manual Extensible Authentication Protocol over LAN
Page 67 Page 69

42C4911 specifications

Nortel Networks 42C4911 is a key hardware component designed to meet the needs of modern telecommunications infrastructure. As part of Nortel's extensive portfolio, the 42C4911 has made a significant impact on network design and operation, particularly in enterprises requiring reliable and efficient communication solutions.

One of the standout features of the 42C4911 is its modularity. This allows for flexible configurations and upgrades, enabling organizations to adapt to changing technology requirements and business demands. The design philosophy behind the 42C4911 emphasizes scalability, allowing users to start with a basic setup and expand it as their networking needs grow. This feature is particularly appealing to medium and large enterprises that anticipate increased data and communication requirements over time.

In terms of technology, the 42C4911 supports various telecommunications standards, making it versatile for multiple applications. It typically integrates with other Nortel equipment and can work with third-party devices, ensuring seamless interoperability across different platforms. This is critical as organizations look to create unified communications systems that can handle voice, data, and video traffic efficiently.

The 42C4911 is known for its robust performance and reliability. It is designed to operate continuously under demanding conditions, which is essential for organizations that rely on constant connectivity for their operations. Its built-in redundancy features help safeguard against potential failures, thus enhancing the overall stability of the network. This reliability is further complemented by Nortel's commitment to high-quality manufacturing standards, ensuring that users receive a durable and efficient product.

Security is another major consideration for any networking device, and the 42C4911 provides advanced security features to protect sensitive data. With increasing cybersecurity threats, organizations prioritize devices that offer strong encryption and access control mechanisms. The 42C4911 addresses these needs while facilitating secure communication channels for users, which is essential in today's increasingly interconnected world.

Overall, the Nortel Networks 42C4911 stands out as a versatile and powerful component in the telecommunications landscape. Its modular design, compatibility with diverse technologies, reliability, and emphasis on security make it an appealing choice for organizations looking to enhance their networks. As companies continue to navigate the complexities of communication, devices like the 42C4911 play a crucial role in ensuring that they remain connected and efficient.