Manualshelf

Specifications

ManualsBrandsComnet ManualsComputer equipmentCWGE28FX4TX24MS
71727374757677787980
INS_CWGE28FX4TX24MS_REV– 08/31/12 PAGE 78
INSTALLATION AND OPERATION MANUAL CWGE28FX4TX24MS
TECH SUPPORT: 1.888.678.9427
Label Description
System Configuration
Port The port number for which the configuration below applies.
Admin
State
Sets the authentication mode to one of the following options (only used when 802.1X or
MAC-based authentication is globally enabled):
Auto: Requires an 802.1X-aware client (supplicant) to be authorized by the authentication
server. Clients that are not 802.1X-aware will be denied access.
Authorized: Forces the port to grant access to all clients, 802.1X-aware or not. The switch
transmits an EAPOL Success frame when the port links up.
Unauthorized: Forces the port to deny access to all clients, 802.1X-aware or not. The switch
transmits an EAPOL Failure frame when the port links up.
MAC-Based: Enables MAC-based authentication on the port. The switch does not transmit or
accept EAPOL frames on the port. Flooded frames and broadcast traffic will be transmitted
on the port, whether or not clients are authenticated on the port, whereas unicast traffic
against an unsuccessfully authenticated client will be dropped. Clients that are not yet
successfully authenticated will not be allowed to transmit frames of any kind.
Port State The current state of the port. It can undertake one of the following values:
Disabled: 802.1X and MAC-based authentication is globally disabled.
Link Down: 802.1X or MAC-based authentication is enabled, but there is no link on the port.
Authorized: The port is authorized. This is the case when 802.1X authentication is enabled,
the port has link, and the Admin State is “Auto” and the supplicant is authenticated or the
Admin State is “Authorized”.
Unauthorized: The port is unauthorized. This is the case when 802.1X authentication is
enabled, the port has link, and the Admin State is “Auto”, but the supplicant is not (yet)
authenticated or the Admin State is “Unauthorized”.
X Auth/Y Unauth: X clients are currently authorized and Y are unauthorized. This state is
shown when 802.1X and MAC-based authentication is globally enabled and the Admin State
is set to “MAC-Based.
Max
Clients
This setting applies to ports running MAC-based authentication, only.
The maximum number of clients allowed on a given port can be configured through the list-
box and edit-control for this setting. Choosing the value “All” from the list-box allows the port
to consume up to 48 client state-machines. Choosing the value “Specific” from the list-box
opens up for entering a specific number of maximum clients on the port (1 to 48).
The switch is “born” with a pool of state-machines, from which all ports draw whenever a new
client is seen on the port. When a given ports maximum is reached (both authorized and
unauthorized clients count), further new clients are disallowed access. Since all ports draw
from the same pool, it may happen that a configured maximum cannot be granted, if the
remaining ports have already used all available state-machines.