Where Can I Use This?	What Do I Need?
Prisma SD-WAN	Active Prisma SD-WAN license

Starting with the Prisma SD-WAN Release 6.0.2, end devices like ATM machines, IP Phones, Laptops, connected to ION device switch ports, can access the network only after a successful client authentication to enhance security. Supported authentication modes are IEEE 802.1X and Mac authentication.

802.1X is an IEEE standard for port-based network access control (PNAC). 802.1x defines authentication controls for a user or a device accessing a LAN or WLAN. It authenticates a client-server model facilitating network access only to authorized clients.

When enabled, before the ION device can provide services to a client, the client (connected to the switch port) has to be authenticated by the Remote Authentication Dial In User Service (RADIUS) authentication server. Clients that do not support 802.1X can access the network by using MAC authentication by applying the user policies in the RADIUS server. Only closed mode and single host authentication is supported.

IEEE 802.1X and MAC authentication are supported on all ports on the L2 LAN Switch of the new ION 1200-S and its variants.