Filter
Top Products
802.1x Client Version Checking Configuration 399
Enabling/Disabling a
Quiet-Period Timer
You can use the following commands to enable/disable a quiet-period timer of an
Authenticator (which can be a Switch 5500). If an 802.1x user has not passed the
authentication, the Authenticator will keep quiet for a while (which is specified by
dot1x timer quiet-period command) before launching the authentication again.
During the quiet period, the Authenticator does not do anything related to 802.1x
authentication.
Perform the following configuration in System View.
Table 422 Enabling/Disabling a Quiet-Period Timer
By default, the quiet-period timer is disabled.
802.1x Client Version
Checking
Configuration
With the 802.1x client version checking function enabled on a switch, the switch
checks the version and validity of the 802.1x client running on supplicant systems to
prevent those that use earlier versions of 802.1x client or illegal clients from logging
in. The following are configurations concerning the 802.1x client version checking
function.
■ Enabling the 802.1x Client Version Checking Function
■ Configuring the Maximum Number of Retires to Send Version Checking Request
Packets
■ Configuring the Version Checking Timer
Enabling the 802.1x
Client Version Checking
Function
As for the dot1x version-check command, if you execute it in system view without
specifying the interface-list argument, the command applies to all ports. Otherwise,
the command applies to the specified ports.
You can also execute the dot1x version-check command in Ethernet port view. In
this case, the interface-list argument is unnecessary and the command applies to the
current port only.
Configuring the
Maximum Number of
Retires to Send Version
Checking Request
Packets
After sending a version request packet to a supplicant system, a switch sends another
one to the supplicant system if it does not receive the response from the supplicant
system for the period set by the version checking timer. It continues to send version
request packets to the supplicant system if it still does not receive the response from
Operation Command
Enable a quiet-period timer dot1x quiet-period
Disable a quiet-period timer undo dot1x quiet-period
Table 423 Enable the 802.1x client version checking function
Operation Command Description
Enter system view system-view —
Enable the 802.1x
client version checking
function
dot1x version-check [ interface
interface-list ]
Required
By default, 802.1x client version
checking is disabled.