Filter
Top Products
User Authentication
3-55
3
• The RADIUS server and client also have to support the same EAP authentication
type – MD5. (Some clients have native support in Windows, otherwise the dot1x
client must support it.)
Displaying 802.1x Global Settings
The dot1x protocol includes global parameters that control the client authentication
process that runs between the client and the switch (i.e., authenticator), as well as
the client identity lookup process that runs between the switch and authentication
server. These parameters are described in this section.
Command Attributes
• dot1x Re-authentication – Indicates if switch port requires a client to be
re-authenticated after a certain period of time.
• dot1x Max Request Count – The maximum number of times the switch port will
retransmit an EAP request packet to the client before it times out the authentication
session.
• Timeout for Quiet Period – Indicates the time that a switch port waits after the
Max Request Count has been exceeded before attempting to acquire a new client.
• Timeout for Re-authentication Period – Indicates the time period after which a
connected client must be re-authenticated.
• Timeout for TX Period – The time period during an authentication session that the
switch waits before re-transmitting an EAP packet.
• Supplicant timeout – The time the switch waits for a client response to an EAP
request.
• Server timeout – The time the switch waits for a response from the authentication
server (RADIUS) to an authentication request.
• Re-authentication Max Count – The number of times the switch will attempt to
re-authenticate a connected client before the port becomes unauthorized.
Web – Click Security, 802.1x, Information.
Figure 3-27. 802.1X Information