Scribd Logo
Încărcați

Bine ați venit la Scribd!

  • How To Enable 802.1X

    Încărcat de

    mohankumar4399473
    80 vizualizări19 pagini
    Dot 1x authentication Instructions for PC.

    Titlu original

    How to Enable 802.1X

    Drepturi de autor

    © © All Rights Reserved

    Formate disponibile

    DOCX, PDF, TXT sau citiți online pe Scribd

    Vi se pare util acest document?

    Este necorespunzător acest conținut?

    Raportați acest document
    Dot 1x authentication Instructions for PC.

    Drepturi de autor:

    © All Rights Reserved
    Descărcați ca DOCX, PDF, TXT sau citiți online pe Scribd
    Indicator pentru conținut neadecvat
    80 vizualizări19 pagini

    How To Enable 802.1X

    Încărcat de

    mohankumar4399473
    Dot 1x authentication Instructions for PC.

    Drepturi de autor:

    © All Rights Reserved
    Descărcați ca DOCX, PDF, TXT sau citiți online pe Scribd
    Indicator pentru conținut neadecvat
    din 19

    802.

    1X AUTHENTICATION
    DOCUMENT: HOW TO ENABLE AUTHENTICATION ON THE
    PHONE / SYSTEM

    802.1X Authentication By C.Sasikanth| Polycom, Inc.

    How to Enable 802.1X on your PC:


    Note: THIS EXMAPLE ASSUMES THAT THERE IS ONLY ONCE CA IN THE HEIRARCHY AND
    THAT IS THE ROOT CA. IN THE EVENT THERE IS HEIRARCHICAL CAs IN USE IT HAS TO BE
    NOTED THAT THE PC AND PHONE SHOULD EITHER SHOULD GET THE SUB-ORDINATE CAs
    FROM SERVER OR SHOULD BE PROVISOINOED MANUALLY.
    Before enabling the 802.1X Authentication on our PC first needs to install the certificate on our local
    PC.
    Use the attached certificate to install:

    r.cer

    802.1X Authentication By C.Sasikanth| Polycom, Inc.

    802.1X Authentication By C.Sasikanth| Polycom, Inc.

    Press Install Certificate:

    Press Next:

    802.1X Authentication By C.Sasikanth| Polycom, Inc.

    Select Browse:

    Certificate Successfully Imported Successfully on our PC.

    802.1X Authentication By C.Sasikanth| Polycom, Inc.

    Start-> Run-> services.msc


    Select Wired AutoConfig and start the service.

    802.1X Authentication By C.Sasikanth| Polycom, Inc.

    Start the service:

    Once it is done, go to the Network Connections and check LAN Connection Properties.

    802.1X Authentication By C.Sasikanth| Polycom, Inc.

    In Network Connections > Local Area Connections, click on Authentication.

    802.1X Authentication By C.Sasikanth| Polycom, Inc.

    In Authentication Window:

    802.1X Authentication By C.Sasikanth| Polycom, Inc.

    Click on Settings:

    Select Configure and uncheck it.

    10

    802.1X Authentication By C.Sasikanth| Polycom, Inc.

    After done with all setting now your LAN Connection Starts to Authenticate:

    We can see there will be popup message observed, click on it

    It will ask the Network Authentication details.

    Provide the 802.1X valid User Name and password details and press ok.

    11

    802.1X Authentication By C.Sasikanth| Polycom, Inc.

    If it is success we can see in Local Area Connection below like this.

    If we give wrong user name and password we get error notification:

    In Local Area Connection we can see Authentication Failed:

    12

    802.1X Authentication By C.Sasikanth| Polycom, Inc.

    Enabling 802.1X on the Phone:


    Before doing this we need to enable the 802.1X authentication for our VLAN.
    Check the 802.1X authentication is enabled or not.
    Note: if we done any miss configuration on the router side others will get effect of this.
    ***To enable the 802.1X Authentication take the help of Network Engineer / Lab Admin
    people.***

    For our information how to enable 802.1X do telnet on your pc from putty.

    Login into the router providing the user name and password.

    13

    802.1X Authentication By C.Sasikanth| Polycom, Inc.

    14

    802.1X Authentication By C.Sasikanth| Polycom, Inc.

    Below parameters used for authentication:


    dot1x pae authenticator
    dot1x port-control auto
    dot1x host-mode multi-domain
    dot1x violation-mode protect
    dot1x timeout quiet-period 4
    dot1x timeout tx-period 2
    dot1x max-req 10
    dot1x max-reauth-req 10
    storm-control broadcast level 0.10
    spanning-tree portfast
    spanning-tree bpduguard enable

    15

    802.1X Authentication By C.Sasikanth| Polycom, Inc.

    Provide above values like this

    16

    802.1X Authentication By C.Sasikanth| Polycom, Inc.

    Check whether the Vlan port is accepted the dot1x values or not.
    ENG-LAB-VLAN-1#sh run int fa 0/42 (give your Vlan interface details fa0/x)

    17

    802.1X Authentication By C.Sasikanth| Polycom, Inc.

    Enabling 802.1X on the Polycom IP Phones:


    Install the Certificates in Phone:
    TLS Security:
    Custom CA Certificates -> Select Platform CA1 and install the certificate from your pc to phone.
    Use this attached certificate.

    r.cer

    Install the Device Certificate also in phone:


    TLS Security:
    Custom Device Credentials -> Select Platform Credentials1 and install the certificate.
    Use this attached certificate.

    1.pem

    How to enable the 802.1X Auth.


    Menu -> Settings -> Advanced -> Admin Settings -> Network Configuration -> Ethernet
    Menu.
    802.1X Auth: Disabled make it as Enabled.
    Press Select 802.1X Menu.

    Just for our knowledge and basic testing with phone:


    EAP-Method: MD5
    User ID: polycommda
    Password: polycom@123
    Save the Config and phone will boot up if required.
    Phone will try to contact with 802.1X server.
    Phone will get authenticated with MD5:

    18

    802.1X Authentication By C.Sasikanth| Polycom, Inc.

    If we doing with PC
    In Ethereal Capture see the PC Authentication Captures:
    For Example:

    We can see 802.1x Authentication Test Cases in Polytest TP20 -> UCS Security
    Test Plan -> 802.1x Security.

    19

    802.1X Authentication By C.Sasikanth| Polycom, Inc.

    S-ar putea să vă placă și