Authentication server – Allied Telesis AT-S60 User Manual

Page 555

Advertising
background image

AT-S60 Management Software User’s Guide

Section V: Security Features

555

Authentication Server

The authentication server verifies the supplicant’s details passed to it by
the authenticator. This implementation of 802.1x control requires that a
port acting as an authenticator must communicate with a RADIUS
authentication server. The RADIUS server must be capable of receiving
and deciphering EAP in RADIUS packets. See Figure 179.

The supported encryption mechanisms for communication with the
RADIUS server are EAP-MD5.

For more information on RADIUS, refer to TACACS+ and RADIUS
Overview on page 541.

Figure 179 Authentication Messaging Exchange

8021X5

Port Unauthorized

EAPOL-Start

EAP-Request/Identity

EAP-Response/Identity

EAP-Request/OTP

EAP-Response/OTP

EAP-Success

Port Authorized

Authenticator PAE

Authentication Server

Supplicant PAE

EAPOL-Logoff

Port Unauthorized

Exchange of EAPOL frames

Exchange of EAP frames carried
by RADIUS

Advertising
See also other documents in the category Allied Telesis Computer hardware: