You need to specify the following basic information before LAN Enforcer appliances, management servers, clients, and 802.1x-aware switches all work together:
A name of your choice for the switch policy
The switch manufacturer and model
You select the switch model from a list of supported switches.
The encrypted password or shared secret
The RADIUS server group that is used
The reauthentication timeout period for the 802.1x-aware switch
The default setting is 30 seconds.
Whether the switch forwards other protocols besides EAP
The default setting is to forward other protocols.
You need to specify the following information for the set of 802.1x-aware switches to which the switch policy applies:
A friendly switch name of your choice
IP address, IP address range, or subnet
You need to specify the following VLAN information:
Optionally, you can specify the customized RADIUS attributes in hexadecimal format.
If an 802.1x-aware switch supports dynamic VLAN switching, you can specify that the client must connect to a specific VLAN.
You need to specify the actions that the 802.1x-aware switch needs to take when certain criteria are met:
Host authentication result: Pass, Fail, Unavailable, or Ignore Result
User authentication result: Pass, Fail, Unavailable, or Ignore Result
Policy Check result: Pass, Fail, Unavailable, or Ignore Result