9-11
Catalyst 2960 Switch SoftwareConfiguration Guide
78-16881-01
Chapter9 Configuring IEEE 802 .1x Port-Based Authentication
Configuring IEEE 802.1x Authentication
Resetting the IEEE 802.1x Configuration to the Default Values, page 9-20 (optional)
Configuring IEEE 802.1x Accounting, page 9-21 (optional)
Default IEEE 802.1x Configuration
Table 9 -2 shows the default IEEE 802.1x configuration.
Table9-2 Default IEEE 802.1x Configuration
Feature Default Setting
AAA Disabled.
RADIUS server
IP address
UDP authentication port
Key
None specified.
1812.
None specified.
Switch IEEE 802.1x enable state Disabled.
Per-port IEEE 802.1x enable state Disabled (force-authorized).
The port sends and receives normal traffic without IEEE
802.1x-based authentication of the client.
Periodic re-authentication Disabled.
Number of seconds between
re-authentication attempts
3600 seconds.
Re-authentication number 2 times (number of times that the switch restarts the
authentication process before the port changes to the
unauthorized state).
Quiet period 60 seconds (number of seconds that the switch remains in
the quiet state following a failed authentication exchange
with the client).
Retransmission time 30 seconds (number of seconds that the switch should
wait for a response to an EAP request/identity frame
from the client before resending the request).
Maximum retransmission number 2 times (number of times that the switch will send an
EAP-request/identity frame before restarting the
authentication process).
Host mode Single-host mode.
Guest VLAN None specified.
Client timeout period 30 seconds (when relaying a request from the
authentication server to the client, the amount of time the
switch waits for a response before resending the request
to the client.)
Authentication server timeout period 30 seconds (when relaying a response from the client to
the authentication server, the amount of time the switch
waits for a reply before resending the response to the
server. This setting is not configurable.)