Changing the quiet period – IBM 12.1(22)EA6 User Manual
Page 133
6-17
Cisco Systems Intelligent Gigabit Ethernet Switch Modules for the IBM BladeCenter, Software Configuration Guide
24R9746
Chapter 6 Configuring IEEE 802.1x Port-Based Authentication
Configuring IEEE 802.1x Authentication
To disable periodic re-authentication, use the no dot1x reauthentication interface configuration
command. To return to the default number of seconds between re-authentication attempts, use the no
dot1x timeout reauth-period global configuration command.
This example shows how to enable periodic re-authentication and set the number of seconds between
re-authentication attempts to 4000:
Switch(config-if)# dot1x reauthentication
Switch(config-if)# dot1x timeout reauth-period 4000
Manually Re-Authenticating a Client Connected to a Port
You can manually re-authenticate the client connected to a specific port at any time by entering the
dot1x re-authenticate interface interface-id privileged EXEC command. This step is optional. If you
want to enable or disable periodic re-authentication, see the
“Enabling Periodic Re-Authentication”
.
This example shows how to manually re-authenticate the client connected to a port:
Switch# dot1x re-authenticate interface gigabitethernet0/17
Changing the Quiet Period
When the switch cannot authenticate the client, the switch remains idle for a set period of time, and then
tries again. The idle time is determined by the quiet-period value. A failed authentication of the client
might occur because the client provided an invalid password. You can provide a faster response time to
the user by entering a smaller number than the default.
Command
Purpose
Step 1
configure terminal
Enter global configuration mode.
Step 2
interface interface-id
Specify the interface to be configured, and enter interface configuration
mode.
Step 3
dot1x reauthentication
Enable periodic re-authentication of the client, which is disabled by
default.
Step 4
dot1x timeout reauth-period {seconds |
server}
The keywords have these meanings:
•
seconds—Sets the number of seconds from 1 to 65535; the default is
3600 seconds.
•
server—Sets the number of seconds as the value of the
Session-Timeout RADIUS attribute (Attribute[27]). You can use this
keyword when the switch uses IEEE 802.1x authentication with a
RADIUS server.
This command affects the behavior of the switch only if periodic
re-authentication is enabled.
Step 5
end
Return to privileged EXEC mode.
Step 6
show dot1x interface interface-id
Verify your entries.
Step 7
copy running-config startup-config
(Optional) Save your entries in the configuration file.