Switch settings

Article:HOWTO81748  |  Created: 2012-10-25  |  Updated: 2014-09-21  |  Article URL http://www.symantec.com/docs/HOWTO81748
Article Type
How To

Subject


Switch settings

You need to specify the following basic information before LAN Enforcer appliances, management servers, clients, and 802.1x-aware switches all work together:

  • A name of your choice for the switch policy

  • The switch manufacturer and model

    You select the switch model from a list of supported switches.

  • The encrypted password or shared secret

  • The RADIUS server group that is used

  • The reauthentication timeout period for the 802.1x-aware switch

    The default setting is 30 seconds.

  • Whether the switch forwards other protocols besides EAP

    The default setting is to forward other protocols.

See Adding an 802.1x switch policy for a LAN Enforcer appliance with a wizard.

See Editing basic information about the switch policy and 802.1x-aware switch.

You need to specify the following information for the set of 802.1x-aware switches to which the switch policy applies:

  • A friendly switch name of your choice

  • IP address, IP address range, or subnet

See Adding an 802.1x switch policy for a LAN Enforcer appliance with a wizard.

See Editing information about the 802.1x-aware switch.

You need to specify the following VLAN information:

  • VLAN ID

  • VLAN name

  • Optionally, you can specify the customized RADIUS attributes in hexadecimal format.

See Adding an 802.1x switch policy for a LAN Enforcer appliance with a wizard.

See Editing VLAN information for the switch policy.

If an 802.1x-aware switch supports dynamic VLAN switching, you can specify that the client must connect to a specific VLAN.

You need to specify the actions that the 802.1x-aware switch needs to take when certain criteria are met:

  • Host authentication result: Pass, Fail, Unavailable, or Ignore Result

  • User authentication result: Pass, Fail, Unavailable, or Ignore Result

  • Policy Check result: Pass, Fail, Unavailable, or Ignore Result

See Adding an 802.1x switch policy for a LAN Enforcer appliance with a wizard.


Legacy ID



v7549065_v81664632


Article URL http://www.symantec.com/docs/HOWTO81748


Terms of use for this information are found in Legal Notices