C
ONFIGURING
THE
S
WITCH
2-52
Configuring Global dot1x Parameters
The dot1x protocol includes global parameters that control the client
authentication process that runs between the client and the switch
(i.e., authenticator), as well as the client identity lookup process that runs
between the switch and authentication server. The configuration options
for parameters are described in this section.
Command Attributes
• dot1X Re-authentication - Sets the client to be re-authenticated
after the interval specified by the Timeout for Re-authentication
Period. Re-authentication can be used to detect if a new device is
plugged into a switch port. (Default: Disabled)
• dot1X Max Request Count - Sets the maximum number of times
the switch port will retransmit an EAP request packet to the client
before it times out the authentication session. (Range: 1-10; Default 2)
• Timeout for Quiet Period - Sets the time that a switch port waits
after the dot1X Max Request Count has been exceeded before
attempting to acquire a new client.
(Range: 1-65535 seconds; Default: 60 seconds)
• Timeout for Re-authentication Period - Sets the time period
after which a connected client must be re-authenticated.
(Range: 1-65535 seconds; Default: 3600 seconds)
• Timeout for TX Period - Sets the time period during an
authentication session that the switch waits before re-transmitting an
EAP packet. (Range: 1-65535; Default: 30 seconds)
• authentication dot1x* – Sets the default authentication server
type. Note the specified authentication server type must be enabled
and properly configured for dot1x to function properly. (Options:
radius)
* CLI only.
To Next Page
Loading...
Need help?
General
