Displaying 802.1X information

TABLE 32 Output from the show dot1x command (Continued)

Field

Description

 

 

global-filter-strict-security

Whether strict security mode is enabled or disabled globally. Refer to “Disabling

 

and enabling strict security mode for dynamic filter assignment” on page 171.

 

 

quiet-period

When the Brocade device is unable to authenticate a Client, the amount of time

 

the Brocade device waits before trying again (default 60 seconds).

 

Refer to “Setting the quiet period” on page 176 for information on how to change

 

this setting.

 

 

tx-period

When a Client does not send back an EAP-response/identity frame, the amount

 

of time the Brocade device waits before retransmitting the EAP-request/identity

 

frame to a Client (default 30 seconds).

 

Refer to “Setting the wait interval for EAP frame retransmissions” on page 176 for

 

information on how to change this setting.

 

 

supp-timeout

When a Client does not respond to an EAP-request frame, the amount of time

 

before the Brocade device retransmits the frame.

 

Refer to “Setting the wait interval for EAP frame retransmissions” on page 177 for

 

information on how to change this setting.

 

 

server-timeout

When the Authentication Server does not respond to a message sent from the

 

Client, the amount of time before the Brocade device retransmits the message.

 

Refer to “Specifying a timeout for retransmission of messages to the

 

authentication server” on page 178 for information on how to change this setting.

 

 

maxreq

The number of times the Brocade device retransmits an EAP-request/identity

 

frame if it does not receive an EAP-response/identity frame from a Client (default

 

2 times).

 

Refer to “Setting the maximum number of EAP frame retransmissions” on

 

page 177 for information on how to change this setting.

 

 

re-authperiod

How often the device automatically re-authenticates Clients when periodic

 

re-authentication is enabled (default 3,600 seconds).

 

Refer to “Configuring periodic re-authentication”on page 175 for information on

 

how to change this setting.

 

 

Protocol Version

The version of the 802.1X protocol in use on the device.

 

 

To display information about the 802.1X configuration on an individual port, enter the show dot1x configuration ethernet command.

Brocade# show dot1x configuration ethernet 1/1/3

Port-Control

: control-auto

filter strict security

: Enable

Action on RADIUS timeout

: Treat as a failed authentication

re-authenticate

: 150 seconds

PVID State

: Normal (101)

Original PVID

: 101

PVID mac total

: 1

PVID mac authorized

: 1

num mac sessions

: 1

num mac authorized

: 1

Number of Auth filter

: 0

Syntax: show dot1x config ethernet port

Specify the port variable in stack-unit/slotnum/portnumformat.

Brocade ICX 6650 Security Configuration Guide

185

53-1002601-01

 

Page 205
Image 205
Brocade Communications Systems 6650 manual Syntax show dot1x config ethernet port, Field Description