Brocade Mobility 7131N-FGR Access Point Product Reference Guide (Supporting software release 4.0.0.0-35GRN and later) User Manual

168

Brocade Mobility 7131N-FGR Product Reference Guide

53-1001947-01

Configuring 802.1x EAP settings

6

7. Select the Reauthentication tab as required to define authentication connection policies,

intervals and maximum retries. The items within this tab are identical regardless of whether
Internal or External is selected from the Radius Server drop-down menu.

NOTE

The default values described are the recommended values. Do not change these values unless
consulted otherwise by an administrator.

8. Select the Advanced Settings tab as required to specify a MU quiet period, timeout interval,

transmit period, and retry period for MUs and the authentication server. The items within this
tab are identical regardless of whether Internal or External is selected from the Radius Server
drop-down menu.

Enable Syslog

Select the Enable Syslog checkbox to enable Radius accounting
syslog messages relating to EAP events to be written to the
specified syslog server.

Syslog Server IP
Address

Enter the IP address of the destination syslog server to be used to
log EAP events.

Enable
Reauthentication

Select the Enable Reauthentication checkbox to configure a
wireless connection policy so MUs are forced to reauthenticate
periodically. Periodic repetition of the EAP process provides
ongoing security for current authorized connections.

Period (30-9999) secs

Set the EAP reauthentication period to a shorter interval for tighter
security on the WLAN's connections. Set the EAP reauthentication
period to a longer time interval (at most, 9999 seconds) to relax
security on wireless connections. The default interval of 3600
seconds is recommended.

Max. Retries (1-99)
retries

Define the maximum number of MU retries to reauthenticate after
failing to complete the EAP process. Failure to reauthenticate in
the specified number of retries results in a terminated connection.
The default is 2 retries.

MU Quiet Period
(1-65535) secs

Specify an idle time (in seconds) between MU authentication
attempts, as required by the authentication server. The default is
10 seconds.

MU Timeout
(1-255) secs

Define the time (in seconds) for the access point’s retransmission
of EAP-Request packets. The default is 10 seconds.

MU Tx Period
(1-65635) secs

Specify the time period (in seconds) for the access point's
retransmission of the EAP Identity Request frame. The default is 5
seconds.

MU Max Retries
(1-10) retries

Specify the maximum number of times the access point
retransmits an EAP-Request frame to the client before it times out
the authentication session. The default is 2 retries.

Server Timeout
(1-255) secs

Specify the time (in seconds) for the access point's retransmission
of EAP-Request packets to the server. The default is 5 seconds. If
this time is exceeded, the authetnication session is terminated.

Server Max Retries
(1-255 retries)

Specify the maximum number of times for the access point to
retransmit an EAP-Request frame to the server before it times out
the authentication session. The default is 2 retries.