Support User Manuals

GarrettCom MNS-6K-SECURE 14.1.4 Switch User Manual

Open as PDF

of 364

MAGNUM 6K SWITCHES, MNS-6K USER GUIDE

transmit – [optional] This is the transmit period, this is the time in seconds the

authenticator waits to transmit another request for identification from the supplicant.

Default value is 30. Values can be from 1 to 65535 seconds

Syntax reauth port=<num|list|range> [status=<enable|disable>] [period=<10-86400>]

set values on how the authenticator (Magnum 6K switch) does the re-authentication with the supplicant or

PC

port – [mandatory] – ports to be configured

status – [optional] This enables/disables re-authentication

period – [optional] this is the re-authentication period in seconds. This is the time the

authenticator waits before a re-authentication process will be done again to the supplicant.

Default value is 3600 seconds (1 hour). Values can range from 10 to 86400 seconds.

Syntax show-stats port=<num> displays 802.1x related statistics

Syntax trigger-reauth port=<num|list|range> manually initiate a re-authentication of supplicant

Chapter 9 – Access using

TACACS+

Syntax show tacplus <status|servers> - show status of TACACS or servers configured as TACACS+

servers

Syntax tacplus <enable|disable> [ order=<tac,local | local,tac>] - enable or disable TACACS

authentication, specifying the order in which the server or local database is looked up where “tac,local”

implies, first the TACAS+ server, then local logins on the device

Syntax tacserver <add|delete> id=<num> [ip=<ip-addr>] [port=<tcp-port>]

[encrypt=<enable|disable>] [key=<string>] [mgrlevel=<level>]

[oprlevel=<level>] – adds a list of up to five TACACS+ servers where

<add|delete> – [mandatory] adds or delete a TACACS+ server.

id=<num> – [mandatory] the order in which the TACACS+ servers should be polled for

authenticaton

[ip=<ip-addr>] – [mandatory for add] the IP address of the TACACS+ server

[port=<tcp-port>] – [optional for add] TCP port number on which the server is listening

[encrypt=<enable|disable>] – [optional for add] enable or disable packet encryption

[key=<string>] – [optional for add, mandatory with encrypt] when encryption is enabled,

the secret shared key string must be supplied

[mgrlevel=<level>] and [oprlevel=<level>] – [optional] specifies the manager and

operator level as defined on the TACACS+ server for the respective level of login

290

previous next