HP (Hewlett-Packard) 2650 (J4899A/B) Switch User Manual


 
8-17
Configuring Port-Based Access Control (802.1X)
Configuring Switch Ports as 802.1X Authenticators
Sets the period of time the switch waits for a supplicant
response to an EAP re quest. If the supplicant does not
respond within the configured time frame, the session
times out. (Default: 30 seconds)
aaa port-access authenticator < port-list > (Syntax Continued)
[server-timeout < 1 - 300 >]
Sets the period of time the switch waits for a server
response to an authentication request. If there is no
response within the configured time frame, the switch
assumes that the authentication attempt has timed
out. Depending on the current max-requests setting, the
switch will either send a new request to the server or
end the authentication session. (Default: 30 seconds)
[max-requests < 1 - 10 >]
Sets the number of authentication attempts that must
time-out before authentication fails and the authenti-
cation session ends. If you are using the Local authen-
tication option, or are using RADIUS authentication
with only one host server, the switch will not start
another session until a client tries a new access
attempt. If you are using RADIUS authentication with
two or three host servers, the switch will open a session
with each server, in turn, until authentication occurs
or there are no more servers to try. During the quiet-
period (previous page), if any, you cannot reconfigure
this parameter. (Default: 2)
[reauth-period < 1 - 9999999 >]
Sets the period of time after which clients connected
must be re-authenticated. When the timeout is set to 0
the reauthentication is disabled (Default: 0 second)
[unauth-vid < vlan-id >]
Configures an existing static VLAN to be the Unauthor-
ized-Client VLAN. This enables you to provide a path
for clients without supplicant software to download the
software and begin an authentication session. Refer to
“802.1X Open VLAN Mode” on page 8-21.
[auth-vid < vid >