You are here: Webhelp 5.5R7 > Authentication > 802.1x

802.1x

This feature may not be available on all platforms. Please check your system's actual page if your device delivers this feature.

802.1X is a standard defined by IEEE for Port-based Network Access Control. It uses Layer-2 based authentication (protocol: EAPOL, Extensible Authentication Protocol over LAN) to verify the legality of the users accessing the network through LAN. Before authentication, the security device only allows the 802.1X message to pass through the port. After authentication, all of the normal traffic can pass through.

The AAA servers for 802.1x are Local server and Radius server. Other types of AAA servers like AD or LDAP server do not support 802.1x.

The authenticating process is the same with other authentication, please refer to Authentication.

Configuring 802.1x

A complete configuration for 802.1x authentication includes the following points:

  • Prerequisite: Before configuration, you should already have the AAA server you want (only local or Radius server is supported for 802.1x). The AAA server has been added in the firewall system (refer to AAA server), and the interface or VLAN for authentication has been bound to a security zone (refer to interface or VLAN).
  • Configuration key steps:
    1. Creating a 802.1x profile.
    2. Creating a security policy to allow accessing.
  • In the user's PC, modify the network adapter's properties: If the computer is connected to the 802.1x interface, this computer should enable its authentication function on its LAN port (right click LAN and select Properties, in the prompt, under the <Authentication> tab, select MD5-Challenge or Microsoft: Protected EAP (PEAP), and click OK to confirm.)
Early versions of Windows have enabled 802.1x by default, but Windows 7 and Window 8 do not have this feature enabled. To enable 802.1x, please search online for a solution that suits your system.

Creating 802.1x Profile

To create a 802.1x profile, take the following steps:

  1. Select Network > 802.1X > 802.1X.
  2. Click New and a prompt appears.
  1. Click OK.

802.1x Global Configuration

Global parameters apply to all 802.1x profiles.

To configure global parameters, take the following steps:

  1. Select Network > 802.1X > Global Configuration.

  2. Click OK.

Viewing Online Users

To view which authenticated users are online:

  1. Select Network > 802.1X > Online user.
  2. The page will show all online users. You can set up filters to view results that match your conditions.