The operation of 802.1X on the switch requires the following:
RADIUS server
1. Client attempts to access a switch port.
2. Switch sends client an identity request.
3. Client sends back identity information.
4. Switch forwards this to authentication server.
5. Authentication server challenges client.
6. Client responds with proper credentials.
7. Authentication server approves access.
8. Switch grants client access to this port.
802.1x client
This switch uses the Extensible Authentication
Protocol over LANs (EAPOL) to exchange authentication
protocol messages with the client, and a
remote RADIUS authentication server to verify user identity and access rights. When a client (i.e., Supplicant) connects to a switch port, the switch (i.e., Authenticator) responds with an EAPOL identity request. The client provides its identity (such as a user name) in an EAPOL response to the switch, which it forwards to the RADIUS server. The RADIUS server verifies the client identity and sends an access challenge back to the client. The EAP packet from the RADIUS server contains not only the challenge, but the authentication method to be used. The client can reject the authentication method and request another, depending on the configuration of the client software and the RADIUS server. The authentication method must be MD5. The client responds to the appropriate method with its credentials, such as a password or certificate. The RADIUS server verifies the client credentials and responds with an accept or reject packet. If authentication is successful, the switch allows the client to access the network. Otherwise, network access is denied and the port remains blocked.
USER AUTHENTICATION

The switch must have an IP address assigned.

RADIUS authentication must be enabled on the switch and the IP address of the RADIUS server specified.

Each switch port that will be used must be set to dot1X “Auto” mode.

Each client that needs to be authenticated must have dot1X client software installed and properly configured.

3-67

Page 116 Page 118
Page 117
Image 117
SMC Networks TigerSwitch manual
Page 116 Page 118

TigerSwitch specifications

The SMC Networks TigerSwitch series represents a robust line of Ethernet switches designed to cater to a wide range of networking needs, from small businesses to enterprise environments. With a strong emphasis on performance, reliability, and ease of use, the TigerSwitch series has garnered a reputation for delivering effective solutions for today’s demanding data communication requirements.

One of the standout features of the TigerSwitch is its support for Gigabit Ethernet, which enables higher data transfer rates and reduced latency. This performance boost is crucial for businesses that rely on bandwidth-heavy applications such as VoIP, video conferencing, and large file transfers. Many models in the series come with multiple Gigabit Ethernet ports, providing businesses with the flexibility to connect various devices and expand their networks seamlessly.

The TigerSwitch series also incorporates advanced Layer 2 switching capabilities, including features such as VLAN support and QoS (Quality of Service). VLAN support allows network administrators to segment network traffic, enhancing security and improving overall network performance. By segregating traffic based on user groups or applications, VLANs help manage bandwidth more effectively. QoS is particularly important in environments where voice and video services compete for bandwidth, as it prioritizes critical applications ensuring minimal interruptions in service quality.

Another key characteristic of the TigerSwitch is its user-friendly management interface. Many models come with web-based management capabilities, making it simpler for network administrators to configure settings, monitor performance, and troubleshoot issues. Additionally, the series supports SNMP (Simple Network Management Protocol), allowing for centralized network management and monitoring, which is essential for larger networks.

The TigerSwitch series also promotes energy efficiency, aligning with modern eco-friendly practices. Many of the switches feature Power over Ethernet (PoE) support, allowing them to deliver power to connected devices such as IP cameras and wireless access points over the same Ethernet cable used for data. This not only simplifies cabling requirements but also contributes to reducing overall power consumption, which is a consideration for both cost savings and environmental impact.

In conclusion, the SMC Networks TigerSwitch series stands out due to its combination of performance, advanced features, and ease of management. With its Gigabit Ethernet capabilities, VLAN and QoS support, user-friendly interfaces, and energy-efficient design, the TigerSwitch is well-equipped to meet the diverse needs of modern networking environments, offering reliable solutions that cater to both current demands and future expansions.
Top Page Image Contents