Cisco ASA 5505 User Manual

70-16

Cisco ASA 5500 Series Configuration Guide using the CLI

Chapter 70 Configuring Network Admission Control

Changing Global NAC Framework Settings

Detailed Steps

Command

Purpose

Step 1

global

Switches to global configuration mode.

Step 2

eou port

port_number

Example:

hostname(config)# eou port 62445

hostname(config)#

The default port number is 21862. This command
changes the port number (on the client endpoint)
used for EAP over UDP communication with
posture agents.

port_number must match the port number
configured on the CTA. Enter a value in the range
1024 to 65535.

Changes the port number for EAP over UDP
communication to 62445.

Step 3

(Optional)

no

eou port

Example:

hostname(config)# no eou port

hostname(config)#

Changes the port number to its default value.

Step 4

eou timeout retransmit

seconds

Example:

hostname(config)# eou timeout retransmit 6

hostname(config)#

Changes the retransmission retry timer. When the
ASA sends an EAP over UDP message to the remote
host, it waits for a response. If it fails to receive a
response within n seconds, it resends the EAP over
UDP message. By default, the retransmission timer
is 3 seconds.

seconds is a value in the range 1 to 60.

Changes the retransmission timer to 6 seconds.

Step 5

(Optional)

no eou timeout retransmit

Example:

hostname(config)# no eou timeout retransmit

hostname(config)#

Changes the retransmission retry timer to its default
value.

Step 6

eou max-retry

retries

Example:

hostname(config)# eou max-retry 1

hostname(config)#

Changes retransmission retries. When the ASA
sends an EAP over UDP message to the remote host,
it waits for a response. If it fails to receive a
response, it resends the EAP over UDP message. By
default, it retries up to 3 times.

retries is a value in the range 1 to 3.

Limits the number of EAP over UDP
retransmissions to 1.