3Com 3C17300A Implementation Guide - Page 81

What is Network Login? 81 How Network Login Works When Network Login is enabled the Switch acts as a relay agent between the client device that is requesting access to the network and the RADIUS server. The authentication information that is exchanged between the client device and the RADIUS server is received and transmitted by the Switch, as shown in Figure 19. The Switch does not interpret or store this information. If the RADIUS server is unavailable, the switch may be configured to provide default access on each port that has switch-configured VLAN and QoS parameters. If default access has not been configured the switch will maintain port security settings. Figure 19 Network Login Operation Network Access Client (Client Device) Network Access Server (Switch 4200) Authentication Information Authentication Information RADIUS Server When the client device and RADIUS server have exchanged authentication information, the Switch receives either an authentication succeeded or failed message from the server, and then configures the port to forward or filter traffic as appropriate. If access is granted, the Spanning Tree Protocol places the port into the forwarding state and the client device can obtain an IP address. If possible, when a port is configured for Network Login, it should also be configured to 'Auto' or 'Enable' Spanning Tree Protocol (STP) FastStart. STP Faststart minimizes the delay before STP places the port into the forwarding state.