Chapter 16: Setting 802.1x Port-based Network Access
180
5. Modify the following fields as needed:
Port Id— Indicates the port number.
Port Role— Indicates that you’ve selected the port as an
Authenticator.
Authentication Mode— Indicates the authentication mode.
Choose from the following:
Unauthorized Sets the port to the 802.1x
authenticator role, in the unauthorized
state. Although the port is in the
authenticator role, the switch blocks all
authentication on the port. If you set all
the ports on the switch to this setting,
then no clients can log on and forward
packets through them.
Force-authorized Sets port to the 802.1x authenticator
role, in the force-authorized state. A
port in the force-authorized state
transitions to the authorized state
without any authentication exchanges
required. The port transmits and
receives traffic normally without
802.1X-based authentication of the
clients.
Auto Sets the port to the 802.1X port-based
authenticator role. A port in this state
begins in the unauthorized state,
forwarding only EAPOL frames, until a
client has logged on successfully.
TimeoutsThe following fields set the timers for this feature:
Quiet Period— Sets the number of seconds that an authenticator
port remains in the quiet state following a failed authentication
exchange with a client. The range is 0 to 65,535 seconds. The
default value is 60 seconds.
Tx-period— Sets the number of seconds an authenticator port
waits for a response to an EAP-request/identity frame from a client
before retransmitting the request. The default value is 30 seconds.
The range is 1 to 65,535 seconds.
Reauth-period— Specifies the time interval that an authenticator
port requires a client to reauthenticate. The range is 1 to 65,535
seconds. The default value is 4,294,967,295 seconds.