My TN Connection

Network switches can provide open and easy access to network resources by simply attaching a client PC. While this automatic configuration and access is a desirable feature, it also can allow for unauthorized personnel to easily intrude and possibly gain access to sensitive information.

802.1x is an excellent way for securing data networks and restricting unauthorized clients and machines from connecting to LAN switch ports. The following will briefly cover why 802.1x was developed, what it is and how it is deployed. This high level information is meant to give you a basic understanding of 802.1x and how it could be used in our network.

Why was 802.1x Developed?
802.1x was designed to accommodate the following requirements:

Network Control at the Port Level
The port of an Ethernet switch is the best place to control network access since that is where the user attaches. By controlling a user’s network attachment point, the network environment can be customized to meet that user’s needs and access rights.

Authentication, Authorization and Accounting
If a company or organization currently uses Authentication, Authorization and Accounting (AAA) technology to control users’ access then 802.1x can use these AAA servers to provide AAA functions to 802.1x clients

Public Network Security
For companies and organizations that extend their networks into public areas for guest access they must control user access to the network. Before 802.1x a user could plug into a live port and gain full access to a network. This became an even greater problem as wireless LANs were deployed because any user within physical range of a wireless access point could attempt to access the network.

What is 802.1x?
802.1x is an IEEE standard for port-based network access control. It authenticates devices attached to a LAN port on an Ethernet switch by initiating a connection and requesting login details. Access is prevented if the authentication fails.

802.1x is a feature that is supported on most managed Ethernet switches today.

How is 802.1x Deployed?

The following items would take place for a successful 802.1x authentication based on figure 1.

1. 1. Client attempts to access a switch port
2. 2. Switch sends client an identity request
3. 3. Client send back identity information
4. 4. Switch forwards identity information to authentication server
5. 5. Authentication server challenges client
6. 6. Client responds with proper credentials
7. 7. Authentication server approves access
8. 8. Switch grants client access to the port

View Transition Networks’ entire line of managed Ethernet switches, including those that support 802.1x. >>

Keywords: 802.1x, Connection, Definition, Ethernet, IEEE, Networks, ST, Switch Sense, Switches, Transition Networks

You can leave a response, or trackback from your own site.