EasyManuals Logo
Home>3Com>Switch>Switch 4500 26-Port

3Com Switch 4500 26-Port User Manual

3Com Switch 4500 26-Port
396 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #192 background imageLoading...
Page #192 background image
190 CHAPTER 11: 802.1X CONFIGURATION
provided by 3Com (or by Microsoft Windows XP). The 802.1X Authentication
Server system normally stays in the carrier's AAA center.
Authenticator and Authentication Server exchange information through EAP
(Extensible Authentication Protocol) frames. The user and the Authenticator
exchange information through the EAPoL (Extensible Authentication Protocol over
LANs) frame defined by IEEE 802.1X. Authentication data are encapsulated in the
EAP frame, which is to be encapsulated in the packets of other AAA upper layer
protocols (for example, RADIUS) so as to go through the complicated network to
reach the Authentication Server. Such procedure is called EAP Relay.
There are two types of ports for the Authenticator. One is the Uncontrolled Port,
and the other is the Controlled Port. The Uncontrolled Port is always in
bi-directional connection state. The user can access and share the network
resources any time through the ports. The Controlled Port will be in connecting
state only after the user passes the authentication. Then the user is allowed to
access the network resources.
Figure 55 802.1X System Architecture
802.1X Authentication
Process
802.1X configures EAP frame to carry the authentication information. The
Standard defines the following types of EAP frames:
â–  EAP-Packet: Authentication information frame, used to carry the
authentication information.
â–  EAPoL-Start: Authentication originating frame, actively originated by the user.
â–  EAPoL-Logoff: Logoff request frame, actively terminating the authenticated
state.
â–  EAPoL-Key: Key information frame, supporting to encrypt the EAP packets.
â–  EAPoL-Encapsulated-ASF-Alert: Supports the Alerting message of Alert
Standard Forum (ASF).
The EAPoL-Start, EAPoL-Logoff and EAPoL-Key only exist between the user and
the Authenticator. The EAP-Packet information is re-encapsulated by the
Authenticator System and then transmitted to the Authentication Server System.
Supplicant
Authenticator
PAE
Authenticator
Server
Supplicant
System
Authenticator System
Authenticator
Server
System
EAP protocol
exchanges
carried in
higher layer
protocol
EAPoL
Controlled
Port
Port
unauthorized
LAN
Uncontrolled
Port
Services
offered
by
Authenticators
System
(User)

Table of Contents

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the 3Com Switch 4500 26-Port and is the answer not in the manual?

3Com Switch 4500 26-Port Specifications

General IconGeneral
Brand3Com
ModelSwitch 4500 26-Port
CategorySwitch
LanguageEnglish

Related product manuals