Research And Design Of Enterprise Network Terminal Access System Based On 802.1x

Currently,security incidents related to network information systems continue to increase,and malicious intrusions and attacks by programs such as viruses and Trojan horses continue to pose threats to enterprise network systems.While the scale of networks and information systems is gradually expanding,many enterprises are faced with the problems of enterprise network security risks increasing,which due to the lack of terminal control and terminal operating system with unsafe configurations access to the internal network.How to manage and control the network access security of user terminals in accordance with the unified rules of enterprises,and implement self-service security compliance configuration of access terminals has become an important issue that these enterprises must face in the construction and upgrade of network security.The main work of this article is as follows:(1)Analyzed the terminal security problems and needs in the enterprise office network,and studied the common technologies such as RADIUS authentication protocol,802.1x authentication,and 802.1x admission control.(2)Researched the implementation process of enterprise office network admission control and the method of establishing network admission control system,designed the security layered protection enterprise office network terminal admission control system based on network admission and application admission,and realized those enterprises about the combination of network terminal access management and control strategy,technology and management.(3)Achieved the overall process and system architecture of the admission control system based on 802.1x,and having shown functional modules such as identity authentication,compliance check,blocking and isolation,redirection and repair are designed and implemented.(4)Combined with the office network environment of an air transportation enterprise in Henan,the relevant functions of the designed admission control system were tested.The test results show that this system can effectively prevent the illegal users from damaging the office network and protect the security of the corporatenetwork and terminals,server systems and datas by identifying the user's identity,evaluate the user's security features and control the network access of the corporate intranet users.