Configuring periodic re-authentication, Re-authenticating a port manually – Brocade TurboIron 24X Series Configuration Guide User Manual
Page 997
Brocade TurboIron 24X Series Configuration Guide
963
53-1003053-01
Configuring 802.1X port security
auto – The controlled port is unauthorized until authentication takes place between the Client and
Authentication Server. Once the Client passes authentication, the port becomes authorized. This
activates authentication on an 802.1X-enabled interface.
NOTE
You cannot enable 802.1X port security on ports that have any of the following features enabled:
•
Link aggregation
•
Metro Ring Protocol (MRP)
•
Mirror port
•
Trunk port
Configuring periodic re-authentication
You can configure the device to periodically re-authenticate Clients connected to 802.1X-enabled
interfaces. When you enable periodic re-authentication, the device re-authenticates Clients every
3,600 seconds by default. You can optionally specify a different re-authentication interval of
between 1 – 4294967295 seconds.
To configure periodic re-authentication using the default interval of 3,600 seconds, enter the
following command.
TurboIron(config-dot1x)#re-authentication
Syntax: [no] re-authentication
To configure periodic re-authentication with an interval of 2,000 seconds, enter the following
commands.
TurboIron(config-dot1x)#re-authentication
TurboIron(config-dot1x)#timeout re-authperiod 2000
Syntax: [no] timeout re-authperiod <seconds>
The re-authentication interval is a global setting, applicable to all 802.1X-enabled interfaces. To
re-authenticate Clients connected to a specific port manually, use the dot1x re-authenticate
command. Refer to
“Re-authenticating a port manually”
, below.
Re-authenticating a port manually
When periodic re-authentication is enabled, by default the device re-authenticates Clients
connected to an 802.1X-enabled interface every 3,600 seconds (or the time specified by the dot1x
timeout re-authperiod command). You can also manually re-authenticate Clients connected to a
specific port.
For example, to re-authenticate Clients connected to interface 1, enter the following command.
TurboIron#dot1x re-authenticate e 1
Syntax: dot1x re-authenticate ethernet <portnum>
The <portnum> parameter is a valid port number.