46-30
Software Configuration Guide—Release IOS XE 3.6.0E and IOS 15.2(2)E
OL_28731-01
Chapter 46 Configuring 802.1X Port-Based Authentication
Configuring 802.1X Port-Based Authentication
• Configuring 802.1X with Authentication Failed, page 46-72 (optional)
• Configuring 802.1X with Voice VLAN, page 46-74 (optional)
• Configuring Voice Aware 802.1x Security, page 46-75
• Configuring 802.1X with VLAN Assignment, page 46-77
• Enabling Fallback Authentication, page 46-79
• Enabling Periodic Reauthentication, page 46-83 (optional)
• Enabling Multiple Hosts, page 46-84 (optional
• Changing the Quiet Period, page 46-86 (optional)
• Changing the Switch-to-Client Retransmission Time, page 46-87 (optional)
• Setting the Switch-to-Client Frame-Retransmission Number, page 46-88 (optional)
• Configuring an Authenticator and a Supplicant Switch with NEAT, page 46-89
• Manually Reauthenticating a Client Connected to a Port, page 46-96 (optional)
• Initializing the 802.1X Authentication State, page 46-96
• Removing 802.1X Client Information, page 46-96
• Resetting the 802.1X Configuration to the Default Values, page 46-96 (optional)
Default 802.1X Configuration
Table 46-1 shows the default 802.1X configuration.
Table 46-1 Default 802.1X Configuration
Feature Default Setting
Authentication, authorization, and accounting (AAA) Disabled
RADIUS server
• IP address
• UDP authentication port
• Key
• None specified
• 1645
• None specified
Per-interface 802.1X protocol enable state Force-authorized
The port transmits and receives normal traffic without
802.1X-based authentication of the client.
Periodic reauthentication Disabled
Time between reauthentication attempts 3600 sec
Quiet period 60 sec
Number of seconds that the switch remains in the quiet state
following a failed authentication exchange with the client.
Retransmission time 30 sec
Number of seconds that the switch should wait for a response to
an EAP request/identity frame from the client before
retransmitting the request.
To Next Page
Loading...
