Displaying 802.1x global settings, Figure 3-27. 802.1x information – Alcatel Carrier Internetworking Solutions OmniStack 6300-24 User Manual

User Authentication

3-55

3

• The RADIUS server and client also have to support the same EAP authentication

type – MD5. (Some clients have native support in Windows, otherwise the dot1x
client must support it.)

Displaying 802.1x Global Settings

The dot1x protocol includes global parameters that control the client authentication
process that runs between the client and the switch (i.e., authenticator), as well as
the client identity lookup process that runs between the switch and authentication
server. These parameters are described in this section.

Command Attributes
• dot1x Re-authentication – Indicates if switch port requires a client to be

re-authenticated after a certain period of time.

• dot1x Max Request Count – The maximum number of times the switch port will

retransmit an EAP request packet to the client before it times out the authentication
session.

• Timeout for Quiet Period – Indicates the time that a switch port waits after the

Max Request Count has been exceeded before attempting to acquire a new client.

• Timeout for Re-authentication Period – Indicates the time period after which a

connected client must be re-authenticated.

• Timeout for TX Period – The time period during an authentication session that the

switch waits before re-transmitting an EAP packet.

• Supplicant timeout – The time the switch waits for a client response to an EAP

request.

• Server timeout – The time the switch waits for a response from the authentication

server (RADIUS) to an authentication request.

• Re-authentication Max Count – The number of times the switch will attempt to

re-authenticate a connected client before the port becomes unauthorized.

Web – Click Security, 802.1x, Information.

Figure 3-27. 802.1X Information