User`s manual
PT-G7509 User’s Manual Featured Functions
3-66
The IEEE 802.1X Concept
Three components are used to create an authentication mechanism based on 802.1X standards:
Client/Supplicant, Authentication Server, and Authenticator.
Supplicant: The end station that requests access to the LAN and switch services and responds to
the requests from the switch.
Authentication server: The server that performs the actual authentication of the supplicant.
Authenticator: Edge switch or wireless access point that acts as a proxy between the supplicant
and the authentication server, requesting identity information from the supplicant, verifying the
information with the authentication server, and relaying a response to the supplicant.
The PT-G7509 acts as an authenticator in the 802.1X environment. A supplicant and an
authenticator exchange EAPOL (Extensible Authentication Protocol over LAN) frames with each
other. We can either use an external RADIUS server as the authentication server, or implement the
authentication server in the PT-G7509 by using a Local User Database as the authentication
look-up table. When we use an external RADIUS server as the authentication server, the
authenticator and the authentication server exchange EAP frames between each other.
Authentication can be initiated either by the supplicant or the authenticator. When the supplicant
initiates the authentication process, it sends an EAPOL-Start frame to the authenticator. When the
authenticator initiates the authentication process or when it receives an EAPOL Start frame, it
sends an EAP Request/Identity frame to ask for the username of the supplicant.
Configuring Static Port Lock
The PT-G7509 supports adding unicast groups manually if required.
Setting Description Factory Default
MAC Address Add the static unicast MAC address into the address
table.
None
Port Fix the static address with a dedicated port. 1-1