D-Link DGS-3620-52T-SI Product Manual - Page 363
Japanese Web-based Access Control (JWAC), JWAC Global Settings
View all D-Link DGS-3620-52T-SI manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 363 highlights
xStack® DGS-3620 Series Managed Switch Web UI Reference Guide Japanese Web-based Access Control (JWAC) JWAC Global Settings This window is used to enable and configure Japanese Web-based Access Control on the Switch. JWAC and Web Authentication are mutually exclusive functions. That is, they cannot be enabled at the same time. To use the JWAC feature, computer users need to pass through two stages of authentication. The first stage is to do the authentication with the quarantine server and the second stage is the authentication with the Switch. For the second stage, the authentication is similar to Web Authentication, except that there is no port VLAN membership change by JWAC after a host passes authentication. JWAC and WAC can share the same RADIUS server. To view this window, click Security > Japanese Web-based Access Control (JWAC) > JWAC Global Settings as shown below: Figure 8-42 JWAC Global Settings Window The fields that can be configured are described below: Parameter Description JWAC State Click the radio buttons to enable or disable JWAC on the Switch. Virtual IP Virtual URL Enter the JWAC Virtual IP address that is used to accept authentication requests from an unauthenticated host. The Virtual IP address of JWAC is used to accept authentication requests from an unauthenticated host. Only requests sent to this IP will get a correct response. NOTE: This IP does not respond to ARP requests or ICMP packets. Enter the Virtual URL used. UDP Filtering Use the drop-down menu to enable or disable JWAC UDP Filtering. When UDP Filtering is Enabled, all UDP and ICMP packets except DHCP and DNS packets from unauthenticated hosts will be dropped. Port Number (1-65535) Enter the TCP port that the JWAC Switch listens to and uses to finish the authenticating process. Forcible Logout Use the drop-down menu to enable or disable JWAC Forcible Logout. When Forcible Logout is Enabled, a Ping packet from an authenticated host to the JWAC Switch with TTL=1 will be regarded as a logout request, and the host will move back to the unauthenticated state. Authentication Protocol Use the drop-down menu to choose the RADIUS protocol used by JWAC to complete a RADIUS authentication. The options include Local, EAP MD5, PAP, CHAP, MS 353