7-6
Catalyst 2950 Desktop Switch Software Configuration Guide
78-11380-03
Chapter7 Configuring 802.1X Port-Based Authentication
Configuring 802.1X Authentication
Configuring 802.1X Authentication
The section describes how to configure 802.1X port-based authentication on your switch:
• Default 802.1X Configuration, page 7-6
• 802.1X Configuration Guidelines, page 7-7
• Enabling 802.1X Authentication, page 7-8 (required)
• Configuring the Switch-to-RADIUS-Server Communication, page 7-9 (required)
• Enabling Periodic Re-Authentication, page 7-10 (optional)
• Manually Re-Authenticating a Client Connected to a Port, page 7-11 (optional)
• Changing the Quiet Period, page 7-11 (optional)
• Changing the Switch-to-Client Retransmission Time, page 7-12 (optional)
• Setting the Switch-to-Client Frame-Retransmission Number, page 7-13 (optional)
• Enabling Multiple Hosts, page 7-13 (optional)
• Resetting the 802.1X Configuration to the Default Values, page 7-14 (optional)
Default 802.1X Configuration
Table 7-1 shows the default 802.1X configuration.
Table 7-1 Default 802.1X Configuration
Feature Default Setting
Authentication, authorization, and
accounting (AAA) authentication
Disabled.
RADIUS server
• IP address
• UDP authentication port
• Key
• None specified.
• 1812.
• None specified.
Per-interface 802.1X enable state Disabled (force-authorized).
The port transmits and receives normal traffic without
802.1X-based authentication of the client.
Periodic re-authentication Disabled.
Number of seconds between
re-authentication attempts
3600 seconds.
Quiet period 60 seconds (number of seconds that the switch remains in
the quiet state following a failed authentication exchange
with the client).
Retransmission time 30 seconds (number of seconds that the switch should
wait for a response to an EAP request/identity frame
from the client before retransmitting the request).
To Next Page
Loading...
