DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual
161
This window allows you to set the following features:
Parameter Description
From Port / To Port Enter the port or ports to be set.
QuietPeriod
(0-65535) This allows you to set the number of seconds that the Switch remains in the quiet state
following a failed authentication exchange with the client. The default s etting is 60 seconds.
SuppTimeout
(1-65535) This value determines timeout conditions in the exchanges between the Authenticator and the
client. The default setting is 30 seconds.
ServerTimeout
(1-65535) This value determines timeout conditions in the exchanges between the Authenticator and the
authentication server. The default setting is 30 seconds.
MaxReq (1-10) The maximum number of times that the Switch will retransm it an EAP Request to the client
before it times out of the authentication sessions. The default setting is 2.
TxPeriod (1-65535) This sets the TxPeriod of time for the authenticator P AE state machine. This value determines
the period of an EAP Request/Identity packet transmitted to the client. The def ault setting is
30 seconds.
ReAuthPeriod
(1-65535) A constant that defines a nonzero number of seconds bet ween periodic reauthentication of
the client. The default setting is 3600 seconds.
ReAuthentication Determines whether regular reauthentication will take place on this port. The default sett ing is
Disabled.
PortControl This allows you to control the port authorization state.
Select forceAuthorized to disable 802. 1X and cause the port to transition to the authorized
state without any authentication exchange required. This means the port transm i
ts and
receives normal traffic without 802.1X-based authentication of the client.
If forceUnauthorized is sel ected, the port will remain in the unauthorized state, ignoring all
attempts by the client to authenticate. The Switch cannot provide authentication services to
the client through the interface.
If Auto is selected, it will enable 802.1X and cause the por t t o b eg in in th e una utho r i zed stat e ,
allowing only EAPOL frames to be sent and received through the port . The authentication
process begins when the link state of the port transitions from down to up, or when an
EAPOL-start frame is received. The Switch then requests the identity of th e client and begins
relaying authentication messages between the client and the authentica tion server.
The default setting is Auto.
Capability This allows the 802.1X Authenticator settings to be applied on a per-port basis. Select
Authenticator to apply the settings to the port. When the setting is activated A user must pas s
the authentication process to gain access to the network. Select None disable 802.1X
functions on the port.
Direction Sets the administrative-controlled direction to either in or both.
If in is selected, control is only exerted over incoming traf fic through the port you s elected in
the first field.
If both are selected, control is exert ed over both incoming and outgoing traff ic through the
controlled port selected in the first field.
Forward EAPOL
PDU On Port This enables or disables the Switch retransmit EAPOL PDU Request on a per port basis.
Max User On Port
(1-128) Specify the maximum number of users that can be learned via 802.1X a uthentication.
Click Apply to implement your configuration changes.