Authentication server – Allied Telesis AT-S60 User Manual
Page 555
AT-S60 Management Software User’s Guide
Section V: Security Features
555
Authentication Server
The authentication server verifies the supplicant’s details passed to it by
the authenticator. This implementation of 802.1x control requires that a
port acting as an authenticator must communicate with a RADIUS
authentication server. The RADIUS server must be capable of receiving
and deciphering EAP in RADIUS packets. See Figure 179.
The supported encryption mechanisms for communication with the
RADIUS server are EAP-MD5.
For more information on RADIUS, refer to TACACS+ and RADIUS
Overview on page 541.
Figure 179 Authentication Messaging Exchange
8021X5
Port Unauthorized
EAPOL-Start
EAP-Request/Identity
EAP-Response/Identity
EAP-Request/OTP
EAP-Response/OTP
EAP-Success
Port Authorized
Authenticator PAE
Authentication Server
Supplicant PAE
EAPOL-Logoff
Port Unauthorized
Exchange of EAPOL frames
Exchange of EAP frames carried
by RADIUS