Brocade Mobility 5181 Access Point Product Reference Guide (Supporting software release 4.4.0.0) User Manual

Brocade Mobility 5181 Access Point Product Reference Guide

139

53-1002516-01

Configuring 802.1x EAP authentication

6

8. Select the Reauthentication tab as required to define authentication connection policies,

intervals and maximum retries. The items within this tab are identical regardless of whether
Internal or External is selected from the RADIUS Server drop-down menu.

NOTE

The default values described are the recommended values. Do not change these values unless
consulted otherwise by an administrator.

9. Select the Advanced Settings tab as required to specify a Client quiet period, timeout interval,

transmit period, and retry period for Clients and the authentication server. The items within
this tab are identical regardless of whether Internal or External is selected from the Radius
Server drop-down menu.

External Radius
Shared Secret

Specify a shared secret for authentication. The shared secret is
required to match the shared secret on the Radius server.

Client Timeout

Specify the time (in seconds) for the access point’s retransmission
of EAP-Request packets. The default is 10 seconds. If this time is
exceeded, the authentication session is terminated.

Retries

Specify the number of retries for the Client to retransmit a missed
frame to the Radius server before it times out of the
authentication session. The default is 2 retries.

Enable Syslog

Select the Enable Syslog checkbox to enable Radius accounting
syslog messages relating to EAP events to be written to the
specified syslog server.

Syslog Server IP
Address

Enter the IP address of the destination syslog server to be used to
log EAP events.

Enable Reauthentication

Select the Enable Reauthentication checkbox to configure a
wireless connection policy so Clients are forced to reauthenticate
periodically. Periodic repetition of the EAP process provides
ongoing security for current authorized connections.

Period (30-9999) secs

Set the EAP reauthentication period to a shorter interval for tighter
security on the WLAN's connections. Set the EAP reauthentication
period to a longer time interval (at most, 9999 seconds) to relax
security on wireless connections. The default interval of 3600
seconds is recommended.

Max. Retries (1-99) retries

Define the maximum number of Client retries to reauthenticate
after failing to complete the EAP process. Failure to reauthenticate
in the specified number of retries results in a terminated
connection. The default is 2 retries.

Client Quiet Period
(1-65535) secs

Specify an idle time (in seconds) between Client authentication
attempts, as required by the authentication server. The default is
10 seconds.

Client Timeout
(1-255) secs

Define the time (in seconds) for the access point’s retransmission
of EAP-Request packets. The default is 10 seconds.

Client Tx Period
(1-65635) secs

Specify the time period (in seconds) for the access point's
retransmission of the EAP Identity Request frame. The default is 5
seconds.