Switch Administration Guide
- Switch 1.2
- Product Overview
- Technical Specifications
- Supported SonicWall and 3rd party SFP and SFP+ Modules that can be used with SonicWall Switches
- Physical Interface - 10 Port Switch
- Physical Interface - 24 Port Switch
- Physical Interface - 48 Port Switch
- Physical Interface - 8 Port Switch
- Management Interface
- Connecting the Switch to a Network
- Web Access
- System Management
- System
- Switching
- Routing
- Security
- VLAN
- Logging
- Diagnostics
- System Maintenance
- Switch Troubleshooting
- SonicWall Support
Behaviors and Restrictions
- For MAB authentication mechanism, switch will transmit Access-Request message with host source MAC address as user and password. In radius server configuration, the format of the MAC address should be 12 hexadecimal digits, all lowercase and no punctuation.
- If the host source MAC address is saved as static MAC in MAC Address Table, the MAC address will not be progressed during MAB process.
- Switch can handle 10 different MAB requests at the same time per port for authentication.
- In hybrid_mode, host will be authenticated with EAP by default. If host does not support EAP capability, it will fall back to MAB authentication mode.
- In MAC-based mode, traffic from hosts not allowed for authentication will be dropped.
- Before configuring MAC-based authentication mode, this port must be set port control auto. (Mac-Based mode can only be enabled when dot1x port-control is auto.)
- Each host is authenticated separately when using MAC-based authentication mode.
- Guest VLAN and RADIUS VLAN assignment have no effect in MAC-based mode. (Mac-Based mode can only be enabled when dot1x guest vlan and radius vlan assignment are disabled.)
- In MAC-based mode, host information will be cleared after configuring max host number. Hosts that have passed authentication will have to be authenticated again.
- Host information will be cleared after authentication mode, link up status or MAB mode has changed.
- Mac-Based mode does not support MAB hybrid mode.(Mac-Based mode can only be enabled when dot1x MAB is mab_mode or disabled.)
- Max host count is only effective when using MAC-based authentication mode.
Was This Article Helpful?
Help us to improve our support portal