The IEEE 802.1x standard defines a client-server-based access control
and authentication protocol that prevents clients from connecting to a
LAN through publicly accessible ports unless they are authenticated. The
authentication server authenticates each client connected to a switch
port before making available any services offered by the switch or the
LAN.
Until the client is authenticated, IEEE 802.1x access control allows
only Extensible Authentication Protocol over LAN (EAPOL), Cisco
Discovery Protocol (CDP), and Spanning Tree Protocol (STP) traffic
through the port to which the client is connected. After authentication,
normal traffic can pass through the port.
Authentication Flowchart:
No comments:
Post a Comment