User Manual

ManualsBrandsAPC ManualsComputersRack 208V 12A Auto Transfer Switch

101

102

103

104

105

106

107

108

109

110

Rack ATS AP44xx User Manual94

Path: Configuration > Security > Firewall > Test

Temporarily enforce the rules of a chosen policy for a time that you specify.

802.1X Security Configuration

Path: Configuration > Security > 802.1X Security

The NMC takes the role of a supplicant in an EAPoL (Extensible Authentication Protocol over LAN)

architecture used in IEEE 802.1X port-based network access control. The NMC supports EAP-TLS as

an authentication method which requires the user to upload 3 client-side certificates. The private key is

stored in an encrypted format. The user needs to provide a valid passphrase to be able to enable 802.1X

security access.

NOTE: The NMC supports only EAP-TLS authentication method.

The Web UI offers the following options for EAPoL configuration:

Setting Description

EAPoL Access

Used to enable or disable 802.1X Security Access.

NOTE: The 802.1X security access is disabled by default. The user can

enable only when valid certificates and a valid passphrase for the private

key are provided by the user.

Supplicant Identifier

Allows the users to set their own supplicant identifier (up to 32 characters

including whitespace).

NOTE: By default, the supplicant identifier is set to “NMC-Supplicant-

xx:xx:xx:xx:xx:xx” where six octets of ‘xx’ are the MAC ID of the NMC.

CA Certificate

Upload/replace or remove a CA root certificate. The supported file

formats are PEM (Privacy Enhanced Mail) or the DER (Distinguished

Encoding Rules) format with permitted file extensions .pem, .PEM, .der,

or .DER.

Private Key Certificate

Upload/replace or remove an encrypted private key. The supported file

formats are PEM (Privacy Enhanced Mail) or the DER (Distinguished

Encoding Rules) format with permitted file extensions .key or .KEY.

NOTE: Unencrypted private key is not accepted.

Private Key Passphrase

Provide the passphrase to decrypt the encrypted private key. Allows up to

64 characters including whitespace.

User/Public Certificate

Upload/replace or remove a user/public certificate. The supported file

formats are PEM (Privacy Enhanced Mail) or the DER (Distinguished

Encoding Rules) format with permitted file extensions .pem, .PEM, .der,

or .DER.