Port Access Control Port Summary

Use the Port Access Control Port Summary page to view summary information about the port-based authentication settings for each port.

To access this page, click Security > Port Access Control > Port Summary in the navigation menu.

Use the buttons to perform the following tasks:

Click to expand in new window

Port Access Control—Port Summary Fields

Field Description
Interface The interface associated with the rest of the data in the row.
PAE Capabilities The Port Access Entity (PAE) role, which is one of the following:
  • Authenticator: The port enforces authentication and passes authentication information from a remote supplicant (similar to a client or host) to the authentication server. If the server successfully authenticates the supplicant, the port allows access.
  • Supplicant: The port must be granted permission by the authentication server before it can access the remote authenticator port.
Control Mode The port-based access control mode configured on the port, which is one of the following:
  • Auto: The port is unauthorized until a successful authentication exchange has taken place.
  • Force Unauthorized: The port ignores supplicant authentication attempts and does not provide authentication services to the client.
  • Force Authorized: The port sends and receives normal traffic without client port-based authentication.
  • MAC-Based: This mode allows multiple supplicants connected to the same port to each authenticate individually. Each host connected to the port must authenticate separately in order to gain access to the network. The hosts are distinguished by their MAC addresses.
Operating Control Mode The control mode under which the port is actually operating, which is one of the following:
  • Auto
  • Force Unauthorized
  • Force Authorized
  • MAC-Based
  • N/A

If the mode is N/A, port-based access control is not applicable to the port. If the port is in detached state it cannot participate in port access control. Additionally, if port-based access control is globally disabled, the status for all ports is N/A.

PAE State The current state of the authenticator PAE state machine, which is the 802.1X process that controls access to the port. The state can be one of the following:
  • Initialize
  • Disconnected
  • Connecting
  • Authenticating
  • Authenticated
  • Aborting
  • Held
  • ForceAuthorized
  • ForceUnauthorized
Backend State The current state of the back-end authentication state machine, which is the 802.1X process that controls the interaction between the 802.1X client on the local system and the remote authentication server. The state can be one of the following:
  • Request
  • Response
  • Success
  • Fail
  • Timeout
  • Initialize
  • Idle
Initialize (Icon) Click the Initialize icon to reset the 802.1X state machine on the associated interface to the initialization state. Traffic sent to and from the port is blocked during the authentication process. This icon can be clicked only when the port is an authenticator and the operating control mode is Auto.
Re-Authenticate (Icon) Click the Re-Authenticate icon to force the associated interface to restart the authentication process.

If you change any of the parameters, click Submit to apply the changes to the system. If you want the switch to retain the new values across a power cycle, you must save the configuration.