5-20
Configuring Port-Based Access Control (802.1x)
Configuring Switch Ports To Operate As Supplicants for 802.1x Connections to Other Switches
aaa port-access supplicant [ ethernet ] < port-list > (Syntax Continued)
[ auth-timeout < 1 - 300 > ]
Sets the period of time the port waits to receive a
challenge from the authenticator. If the request
times out, the port sends another authentication
request, up to the number of attempts specified
by the max-start parameter. (Default: 30 seconds).
[ max-start < 1 .. 10 >]
Defines the maximum number of times the sup-
plicant port requests authentication. See step 1
on page 5-18 for a description of how the port
reacts to the authenticator response. (Default: 3).
[ held-period < 0 .. 65535 > ]
Sets the time period the supplicant port waits
after an active 802.1x session fails before trying
to re- acquire the authenticator port. (Default: 60
seconds)
[ start-period < 1 .. 300 > ]
Sets the time period between Start packet retrans-
missions. That is, after a supplicant sends a start
packet, it waits duirng the start-period for a
response. If no response comes during the start-
period, the supplicant sends a new start packet.
The max-start setting (above) specifies how
many start attempts are allowed in the session.
(Default: 30 seconds)
aaa port-access supplicant [ ethernet ] < port-list >
[ initialize ]
On the specified ports, blocks inbound and out-
bound traffic and restarts the 802.1x authentica-
tion process. Affects only ports configured as
802.1x supplicants.
[ clear-statistics ]
Clears and restarts the 802.1x supplicant statis-
tics counters.
!FishSecurity.book Page 20 Thursday, October 10, 2002 9:19 PM
To Next Page
Loading...
