Netgear FS728TLP Web Management User Guide - Page 162
Backend State, Authenticator PAE
View all Netgear FS728TLP manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 162 highlights
ProSAFE FS526Tv2, FS726Tv2, and FS728TLP Smart Switches Setting Authenticator PAE State Backend State Description This is a nonconfigurable field that shows the state of the authenticator port access entity (PAE): • Initialize. If the following circumstances occur, the port can enter the Initialize state from any other state: - The port is being initialized. - The Port Control field is set to Auto but the port is not in Auto mode. - The MAC address of the port is invalid. • Disconnected. If the smart switch receives an explicit logoff request from the supplicant, the port can enter the Disconnected state from the Connecting, Authenticated, or Aborting state. If the number of permissible reauthentication attempts is exceeded, the port can also enter the Disconnected state from the Connecting state. • Connecting. The port is operable and the PAE attempts to establish communication with a supplicant. • Authenticating. The supplicant is being authenticated. • Authenticated. The authenticator authenticated the supplicant successfully and the Port Status field (see View the Port Summary on page 164) displays Authorized. • Aborting. The authentication procedure is being aborted prematurely because the smart switch received a reauthentication request, an EAPoL-Start frame, or an EAPoL-Logoff frame, or the authorization timed out. • Held. The smart switch discarded all EAPoL packets for the port to prevent an attack. • ForceAuthorized. The smart switch sent an EAP Success packet to the supplicant, and the Port Status field (see View the Port Summary on page 164) displays Authorized. • ForceUnauthorized. The smart switch sent an EAP Failure packet to the supplicant, and the Port Status field (see View the Port Summary on page 164) displays Unauthorized. This is a nonconfigurable field that shows the state of the back-end authentication for the port: • Request. The smart switch received an EAP Request packet from the authentication server and relayed the packet as an EAPoL-encapsulated frame to the supplicant. • Response. The smart switch received an EAPoL-encapsulated EAP Response packet (either a Response/Identity or a Response packet) from the supplicant and relayed the EAP packet to the authentication server. • Success. The authentication session completed successfully. • Fail. The authentication session failed. • Timeout. The authentication session timed out. If the port is in the Unauthorized state, the smart switch sends an EAP Failure message to the supplicant. • Initialize. The port is being initialized. • Idle. The smart switch waits for a new authentication session. Manage RADIUS and Port Authentication and Traffic Control 162