AirWave Wireless Management Suite | Configuration Guide Aruba Configuration Reference | 77
Machine
Authentication:
Default User Role
ap-role Select the default role to be assigned to the user after completing 802.1x
authentication.
This setting requires a policy enforcement firewall license.
Interval Between
Identity Requests
(1-65535 sec)
30 Specify the interval in which identity requests are to be spaced between
each other.
Quiet Period after
Failed
Authentication
(1-65535 sec)
30 Specify the amount of time in seconds in which failed authentication
denies access to a user, after failed authentication.
Reauthentication
Interval
(60-864000 sec
86,400
seconds
Select this option to force the client to do a 802.1x re-authentication after
the expiration of the default timer for re-authentication. The default value
of the timer (Reauthentication Interval) is 24 hours. If the user fails to re-
authenticate with valid credentials, the state of the user is cleared.
If derivation rules are used to classify 802.1x-authenticated users, then the
Reauthentication timer per role overrides this setting.
Use Server
Provided
Reauthentication
Interval
No 802.1x re-authentication can be attempted after the expiration of the
default timer for re-authentication. Specify whether this is to be supported
from the authentication server.
Multicast Key
Rotation
(60-864000 sec)
No Define whether Multicast Key Rotation is enabled or disabled.
When enabled, unicast and multicast keys are updated after each
reauthorization. It is a best practice to configure the time intervals for
reauthentication, multicast key rotation, and unicast key rotation to be at
least 15 minutes.
Multicast Key
Rotation Time
Interval
(60-86400 sec)
1800 When enabled, unicast and multicast keys are updated after each
reauthorization. It is a best practice to configure the time intervals for
reauthentication, multicast key rotation, and unicast key rotation to be at
least 15 minutes. Make sure these intervals are mutually prime, and the
factor of the unicast key rotation interval and the multicast key rotation
interval is less than the reauthentication interval.
Unicast Key
Rotation Time
Interval
(60-864000 sec)
900
Authentication
Server Retry
Interval
(5-65535 sec)
30 Specify the interface at which reauthentication is supported. The
supported range is from 1 to 6,535 seconds.
Authentication
Server Retry Count
(0-3)
2 Define the number of times that failed authentication should be allowed to
retry authentication.
Framed MTU
(500-1500)
1100 Define the size, in bytes, for framed maximum transmission units.
Number of Times
ID-Requests are
Retried (1-10)
3 Define the number of allowable times that failed ID requests are allowed to
retry the request.
Maximum Number
of Reauthentication
Attempts (1-10)
3 Set the number of times that reauthentication is to be attempted if the first
authentication attempt fails.
Table 17 Aruba Configuration > Profiles > AAA > 802.1x Auth Profile Settings (Continued)
Field Default Description
To Next Page
Loading...
