Port Security in Organizations

Overview

• Port Security refers to securing interfaces on a switch or connections to a wireless access point.
• Commonly encountered when connecting to a network that prompts for a username and password.

Importance

• Effective in securing wireless networks by providing authentication before accessing resources.
• Not limited to wireless; also applicable to traditional switches.

Underlying Protocol: EAP

• EAP (Extensible Authentication Protocol): Framework for authentication across various networks and connections.
• Wireless and wired manufacturers can create EAP configurations for their devices.

802.1X Standard

• Works with EAP for managing authentication of users and devices.
• Also known as NAC (Network Access Control).
• Ensures network access only after successful authentication.

Authentication Components

1. Supplicant: The end-user device trying to access the network.
2. Authenticator: The switch or access point connecting the device to the network.
3. Authentication Server: Backend database containing login credentials (e.g., Active Directory, Radius, TACACS).

Authentication Process

1. Supplicant connects to the network.
2. Authenticator requests login credentials (EAP Request).
3. Supplicant responds with device name (EAP Response).
4. Authenticator forwards request to Authentication Server.
5. Server requests additional details for authentication.
6. Supplicant provides login credentials.
7. If credentials are correct, the server confirms successful login.
8. Authenticator allows network access to the user.

Integration with Other Protocols

• Typically used with protocols or databases like RADIUS, LDAP, TACACS+, Kerberos, etc.

Summary

• Port security, through EAP and 802.1X, is crucial for network security, ensuring only authenticated users gain access.