Ethernet switch access

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

Ethernet switch access example

In this example, the network administrator is managing authorization by using groups. All computer accounts have the Remote Access Permission (Dial-in or VPN) option set to Control access through Remote Access Policy.

The network administrator wants all Ethernet switch clients (members of the SwitchClients group) to use password-based authentication through the Extensible Authentication Protocol (EAP) and the Message Digest 5 (MD5) Challenge EAP type. After remote access permission is set for all computer accounts, the administrator completes the following steps:

  1. Use the New Remote Access Policy Wizard to create a common dial-up policy with the following settings:

    • Policy name: Ethernet access for switch clients

    • Access Method: Ethernet

    • User or Group: Select Group, and then specify the SwitchClients group (example).

    • Authentication methods: Select the MD5-Challenge EAP type.

      For more information, see Add a remote access policy.

  2. Delete the default policies.

    For more information, see Delete a remote access policy.

Note

  • This example assumes that the Ethernet switch has been configured to use both EAP and an IAS server as its RADIUS server. For more information about Ethernet switch deployment, see Ethernet switch access with IAS