3Com 3848 Implementation Guide - Page 80

80 CHAPTER 10: MAKING YOUR NETWORK SECURE Figure 18 Network Login Operation Network Access Client (Client Device) Authentication Information Network Access Server (Switch 3848) Authentication Information RADIUS Server When the client device and RADIUS server have exchanged authentication information, the Switch receives either an authentication succeeded or failed message from the server, and then configures the port to forward or filter traffic as appropriate. If access is granted, the Spanning Tree Protocol places the port into the forwarding state and the client device can obtain an IP address. If possible, when a port is configured for Network Login, it should also be configured to be a Spanning Tree Protocol (STP) edge port. This minimizes the delay before STP places the port into the forwarding state. For further information about RADIUS, see "What is RADIUS?" on page 83. Important Considerations This section contains some important considerations when using Network Login on your Switch. ■ Before you enable Network Login you must ensure that: ■ RADIUS has been configured on the Switch. ■ The RADIUS server in your network is operational. ■ If the RADIUS server fails or is unavailable, client devices will be unable to access the network.