Configuration Guide Configuring 802.1X
Adjust 802.1X parameter configurations based on the actual network situation. For example, if the authentication server
has poor performance, you can raise the authentication server timeout.
Notes
802.1X and RADIUS have separate server timeouts. By default, the authentication server timeout of 802.1X is 5
seconds while that of RADIUS is 15 seconds. In actual situations, ensure that the former is greater than the latter. You
can run the dot1x timeout server-timeout command to adjust the authentication server timeout of 802.1X. For
detailed configuration about the RADIUS server timeout, see the Configuring RADIUS.
Configuration Steps
Enabling Re-authentication
(Optional) After re-authentication is enabled, the NAS can periodically re-authenticate online users.
Enable re-authentication after 802.1X authentication is enabled on the NAS.
Re-authentication is disabled by default.
Global configuration mode
You can run this command to periodically re-authenticate users.
Configuring the Re-authentication Interval
(Optional) You can configure the re-authentication interval for users.
Configure the re-authentication interval after 802.1X authentication is enabled on the NAS. The re-authentication
interval takes effect only after re-authentication is enabled.
dot1x timeout re-authperiod period
period: Indicates the re-authentication interval in the unit of seconds.
The default value is 3,600 seconds.
Global configuration mode
Adjust the re-authentication interval as required.
Configuring the Interval of EAP-Request/Identity Packet Retransmission
(Optional) A larger value indicates a longer interval of packet retransmission.
Configure the interval of EAP-Request/Identity packet retransmission after 802.1X authentication is enabled on the
NAS.
dot1x timeout tx-period period
To Next Page
Loading...
Need help?
General
