9-37
Cisco Catalyst Blade Switch 3130 for Dell Software Configuration Guide
OL-13270-01
Chapter9 Configuring IEEE 802 . 1x Port-Based Authentication Configuring IEEE 802.1x Authentication
To return to the default value, use the no dot1x auth-fail max-attempts interface configuration
command.
This example shows how to set 2 as the number of authentication attempts allowed before the port moves
to the restricted VLAN:
Switch(config-if)# dot1x auth-fail max-attempts 2
Configuring the Inaccessible Authentication Bypass Feature
You can configure the inacces sible bypass feature, also referred to as critical authentica tion o r the AAA
fail policy.
Beginning in privileged EXEC mode, follow these steps to configure the por t as a critical port and enable
the inaccessible authentication bypass feature. This procedure is optional.
Command Purpose
Step1 configure terminal Enter global configuration mode.
Step2 radius-server dead-criteria time time
tries tries (Optional) Set the conditions that are used to decide when a RADIUS
server is considered unavailable or dead.
The range for time is from 1 to 120 seconds. The switch dynamically
determines the default seconds value that is 10 to 60 seconds.
The range for tries is from 1 to 100. The switch dynamically determines
the default tries parameter that is 10 to 100.
Step3 radius-server deadtime minutes (Optional) Set the number of minutes that a RADIUS server is not sent
requests. The range is from 0 to 1440 minutes (24 hours). The default is
0 minutes.