BigIron RX Series Configuration Guide 983
53-1002253-01
Displaying 802.1x information
33
TABLE 160 Output from the show dot1x command
This field... Displays...
PAE Capability The Port Access Entity (PAE) role for the BigIron RX device. This is always
“Authenticator Only”.
system-auth-control Whether system authentication control is enabled on the device. The
dot1x-enable command enables system authentication control on the
device.
Number of ports enabled Number of interfaces on the devices that have been enabled for 802.1x.
re-authentication Whether periodic re-authentication is enabled on the device. Refer to
“Configuring periodic re-authentication” on page 978.
When periodic re-authentication is enabled, the device automatically
re-authenticates Clients every 3,600 seconds by default.
global-filter-strict-security Whether or not strict security mode is enabled globally.
global-filter-strict-security: Whether strict security mode is enabled or disabled globally. See
“Disabling and enabling strict security mode for dynamic filter
assignment” on page 973.
quiet-period When the BigIron RX is unable to authenticate a Client, the amount of
time the BigIron RX waits before trying again (default 60 seconds).
Refer to “Setting the quiet period” on page 979 for information on how to
change this setting.
tx-period When a Client does not send back an EAP-response/identity frame, the
amount of time the BigIron RX waits before retransmitting the
EAP-request/identity frame to a Client (default 30 seconds).
Refer to “Setting the interval for retransmission of EAP-request/ identity
frames” on page 979 for information on how to change this setting.
supp-timeout When a Client does not respond to an EAP-request frame, the amount of
time before the BigIron RX retransmits the frame.
Refer to “Specifying a timeout for retransmission of EAP-request frames
to the client” on page 980 for information on how to change this setting.
server-timeout When the Authentication Server does not respond to a message sent
from the Client, the amount of time before the BigIron RX retransmits
the message.
Refer to “Specifying a timeout for retransmission of messages to the
authentication server” on page 980 for information on how to change
this setting.
max-req The number of times the BigIron RX retransmits an EAP-request/identity
frame if it does not receive an EAP-response/identity frame from a Client
(default 2 times).
Refer to “Specifying the number of EAP-request/identity frame
retransmissions” on page 979 for information on how to change this
setting.
re-authperiod How often the device automatically re-authenticates Clients when
periodic re-authentication is enabled (default 3,600 seconds).
Refer to “Configuring periodic re-authentication” on page 978 for
information on how to change this setting.
security-hold-time This field is not supported.
Protocol Version The version of the 802.1x protocol in use on the device.
Auth-fail-action The configured authentication-failure action. This can be Restricted
VLAN or Block Traffic.
To Next Page
Loading...
