Cisco WS-C4003 Software Guide - Page 362
Remote Access Dial In User Service
View all Cisco WS-C4003 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 362 highlights
Understanding How Authentication Works Chapter 27 Configuring Switch Access Using AAA Table 27-2 defines the terms used in 802.1x. Table 27-2 802.1x Terminology Term Definition Authenticator PAE (Referred to as the "authenticator") entity at one end of a point-to-point LAN segment that enforces supplicant authentication. The authenticator is independent of the actual authentication method and functions only as a pass-through for the authentication exchange. It communicates with the supplicant, submits the information from the supplicant to the authentication server, and authorizes the supplicant when instructed to do so by the authentication server. Authentication server Entity that provides the authentication service for the authenticator PAE. It checks the credentials of the supplicant PAE, and then notifies its client, the authenticator PAE, whether the supplicant PAE is authorized to access the LAN/switch services. Authorized state Status of the port after the supplicant PAE is authorized. Both Bidirectional flow control, incoming and outgoing, at an unauthorized switch port. Controlled port Secured access point. EAP EAPOL1 Extensible authentication protocol. Encapsulated EAP messages that can be handled directly by a LAN MAC service. In Flow control only on incoming frames in an unauthorized switch port. Port PAE2 Single point of attachment to the LAN infrastructure (for example, MAC Bridge ports). Protocol object associated with a specific system port. PDU Protocol data unit. RADIUS Remote Access Dial In User Service. Supplicant PAE (Referred to as the "supplicant") entity that requests access to the LAN/switch services and responds to information requests from the authenticator. Unauthorized state Status of the port before the supplicant PAE is authorized. Uncontrolled port Unsecured access point that allows the uncontrolled exchange of PDUs. 1. EAPOL - Extensible authorization protocol over LAN 2. PAE - Port access entity 27-8 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02