System information

ManualsBrandsD-Link ManualsNetworkingDGS-3000-10TC

221

222

223

224

225

226

227

228

229

230

DGS-3000 Series Layer 2 Managed Gigabit Switch Web UI Reference Guide

218

Complete the JWAC authentication information in this window to set the JWAC page settings. Click the Apply

button to implement the changes made. Click the Set to default button to go back to the default settings of all

elements.

Compound Authentication

Compound Authentication settings allows for multiple authentication to be supported on the Switch.

Compound Authentication Settings

Users can configure Authorization Network State Settings and compound authentication methods for a port or ports

on the Switch.

To view this window, click Security > Compound Authentication > Compound Authentication Settings as

shown below:

Figure 8-49 Compound Authentication Settings window

The fields that can be configured are described below:

Parameter Description

Authorization Attributes

State

Click the radio buttons to enable or disable the Authorization Network State.

When enabled, the authorized attributes (for example VLAN, 802.1p default

priority, and ACL) assigned by the RADIUS server or local database, will be

accepted depending on the individual module’s settings. Authorization for

attributes is enabled by default. When disabled, the authorized attributes (for

example VLAN, 802.1p default priority, and ACL) assigned by the RADIUS

server or local database, will be ignored even if the individual module’s setting

is enabled. Authorization for attributes is enabled by default.

Authentication Server

Failover

Click the radio buttons to configure the authentication server failover function.

Block - The client is always regarded as un-authenticated. This is the default.

Local - The switch will resort to using the local database to authenticate the

client. If the client fails on local authentication, the client is regarded as un-

authenticated, otherwise, it authenticated.

Permit - The client is always regarded as authenticated. If guest VLAN is

enabled, clients will stay on the guest VLAN, otherwise, they will stay on the

original VLAN.

Click the Apply button to accept the changes made for each individual section.

Port Security

Port Security Settings

A given port’s (or a range of ports') dynamic MAC address learning can be locked such that the current source

MAC addresses entered into the MAC address forwarding table cannot be changed once the port lock is enabled.

The port can be locked by changing the Admin State drop-down menu to Enabled and clicking Apply.