Chapter 8
| Authentication Commands
802.1X Port Authentication
– 298 –
◆ Authenticator Parameters – Shows whether or not EAPOL pass-through is
enabled (page 286).
◆ Supplicant Parameters – Shows the supplicant user name used when the switch
responds to an MD5 challenge from an authenticator (page 294).
◆ 802.1X Port Summary – Displays the port access control parameters for each
interface that has enabled 802.1X, including the following items:
â–
Type – Administrative state for port access control (Enabled, Authenticator,
or Supplicant).
â–
Operation Mode – Allows single or multiple hosts (page 289).
â–
Control Mode – Dot1x port control mode (page 290).
â–
Authorized – Authorization status (yes or n/a - not authorized).
◆ 802.1X Port Details – Displays the port access control parameters for each
interface, including the following items:
â–
Reauthentication – Periodic re-authentication (page 290).
â–
Reauth Period – Time after which a connected client must be re-
authenticated (page 291).
â–
Quiet Period – Time a port waits after Max Request Count is exceeded
before attempting to acquire a new client (page 291).
â–
TX Period – Time a port waits during authentication session before re-
transmitting EAP packet (page 293).
â–
Supplicant Timeout – Supplicant timeout.
â–
Server Timeout – Server timeout. A RADIUS server must be set before the
correct operational value of 10 seconds will be displayed in this field.
â–
Reauth Max Retries – Maximum number of reauthentication attempts.
â–
Max Request – Maximum number of times a port will retransmit an EAP
request/identity packet to the client before it times out the authentication
session (page 288).
â–
Operation Mode– Shows if single or multiple hosts (clients) can connect to
an 802.1X-authorized port.
â–
Port Control–Shows the dot1x mode on a port as auto, force-authorized, or
force-unauthorized (page 290).
â–
Intrusion Action– Shows the port response to intrusion when
authentication fails (page 287).
â–
Supplicant– MAC address of authorized client.
â—† Authenticator PAE State Machine
â–
State – Current state (including initialize, disconnected,
connecting,
authenticating, authenticated, aborting,
held, force_authorized,
force_unauthorized).
â–
Reauth Count– Number of times connecting state is re-entered.
â–
Current Identifier– The integer (0-255) used by the Authenticator to identify
the current authentication session.
To Next Page
Loading...
Need help?
General