EasyManua.ls Logo

Alcatel-Lucent OmniSwitch 6860 Series

Alcatel-Lucent OmniSwitch 6860 Series
1078 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Configuring Access Guardian Configuring Port-Based Network Access Control
OmniSwitch AOS Release 8 Network Configuration Guide December 2017 page 28-34
The aaa session-timeout, aaa interim-interval, and aaa 802.1x re-authentication include a trust-radius
option that is disabled by default. When enabled, the value for the time is taken from the following
RADIUS attribute values returned from the RADIUS server. For example:
The Session-Timeout attribute value received in an Access-Accept messages is used for the session
timeout and 802.1X re-authentication parameter values.
The Acct-Interim-Interval attribute value received in an Access-Accept message is used for the
accounting interim update interval parameter.
Use the show aaa config command to display the current authentication session parameters values for
each type of authentication. For example:
-> show aaa mac config
Authentication type = mac
Session Timeout:
Status = disable,
Interval (sec) = 43200,
Trust Radius = disable
Inactivity Timeout:
Status = disable,
Interval (sec) = 600
Accounting Interim:
Interval (sec) = 600,
Trust Radius = disable
Description Command Default Authentication Type
The amount of time a
session remains active
after a successful login
aaa session-timeout Timer = disabled
Time limit = 43200
seconds (12 hours)
MAC, Captive Portal
The amount of time an
inactive user can remain
logged on
aaa inactivity-logout Timer = disabled
Time limit = 600 seconds
MAC, Captive Portal
Accounting update
interval
aaa interim-interval Timer = disabled
600 seconds
802.1X, MAC,
Captive Portal
Number of login attempts
allowed per session
captive-portal retry-count 3 Captive Portal
The re-authentication
time interval
aaa 802.1x re-authentication Timer = disabled
Time limit = 3600 seconds
802.1X
The port identifier for the
NAS-Port attribute
aaa radius nas-port-id User port 802.1X, MAC,
Captive Portal
The system identifier for
the NAS-Identifier
attribute
aaa radius nas-identifier System name of the
switch.
802.1X, MAC,
Captive Portal
The MAC address format
for the Calling-Station-Id
and the Called-Station-ID
attributes
aaa radius mac-format No delimiter, uppercase 802.1X, MAC,
Captive Portal

Table of Contents

Related product manuals