Item

Description

 

 

 

 

 

 

Set the username request timeout timer.

 

 

 

 

 

 

The timer starts when the device sends an EAP-Request/Identity packet to a client in

TX-Period

response to an authentication request. If the device receives no response before this timer

expires, it retransmits the request.

 

 

 

 

 

 

 

 

 

 

 

 

The timer also sets the interval at which the network device sends multicast

 

EAP-Request/Identity packets to detect clients that cannot actively request authentication.

 

 

 

 

 

 

 

 

Set the handshake timer.

 

 

 

 

 

Handshake

The timer sets the interval at which the access device sends client handshake requests to

check the online status of a client that has passed authentication. If the device receives no

Period

response after sending the maximum number of handshake requests, it considers that the

 

client has logged off. For information about how to enable the online user handshake

 

function, see "Configuring 802.1X on a port".

 

 

 

 

 

 

 

 

 

 

 

 

 

Set the periodic online user re-authentication timer.

 

 

 

 

 

Re-Authenticatio

The timer sets the interval at which the network device periodically re-authenticates online

802.1X users. The change to the periodic re-authentication timer applies to the users that

n Period

have been online only after the old timer expires. For information about how to enable

 

 

periodic online user re-authentication on a port, see "Configuring 802.1X on a port".

 

 

 

 

 

 

 

 

Set the client timeout timer.

 

 

 

 

 

Supplicant

The timer starts when the access device sends an

 

 

 

 

TIP:

 

 

 

 

 

 

 

 

Timeout Time

EAP-Request/MD5 Challenge packet to a client. If no

You can set the client timeout

response is received when this timer expires, the

 

 

timer to a high value in a

 

access device retransmits the request to the client.

 

low-performance network, and

 

 

 

Set the server timeout timer.

 

adjust the server timeout timer to

 

The timer starts when the access device sends a

adapt to the performance of

Server Timeout

RADIUS Access-Request packet to the authentication

different authentication servers. In

Time

server. If no response is received when this timer

most cases, the default settings

 

expires, the access device retransmits the request to the

are sufficient.

server.

NOTE:

Do not change the timer parameters of global 802.1X from their default values unless you have determined that the changes would better the interaction process.

Return to 802.1X configuration task list.

Configuring 802.1X on a port

From the navigation tree, select Authentication 802.1X to enter the 802.1X configuration page, as shown in a. In the Ports With 802.1X Enabled area, the 802.1X configuration on ports are listed. Click Add to enter the port 802.1X configuration page, as shown in a.

332