2 configuring the interval of re-authentication, 4 802.1x re-authentication – Siemens S223 User Manual
Page 69
User Manual UMN:CLI
SURPASS hiD 6615 S223/S323 R1.5
A50010-Y3-C150-2-7619 69
Command Mode
Description
dot1x reauth-enable
PORTS Enables
802.1x
re-authentication.
no dot1x reauth-enable
PORTS
Global
Disables 802.1x re-authentication.
4.5.2.2
Configuring the Interval of Re-Authentication
RAIDIUS server contains the database about the user who has access right. The data-
base is real-time upgraded so it is possible for user to lose the access right by updated
database even though he is once authenticated. In this case, even though the user is ac-
cessible to network, he should be authenticated once again so that the changed database
is applied to. Besides, because of various reasons for managing RADIUS server and
802.1x authentication port, the user is supposed to be re-authenticated every regular time.
The administrator of hiD 6615 S223/S323 can configure a term of re-authentication.
To configure a term of re-authentication, use the following command.
Command Mode
Description
dot1x timeout reauth-period
<1-
4294967295> PORTS
Sets the period between re-authentication attempts.
no dot1x timeout reauth-period
PORTS
Global
Deletes the period between re-authentication attempts.
4.5.2.3
Configuring the Interval of Requesting Re-authentication
When the authenticator sends Request/Identity packet for re-authentication and no re-
sponse is received from the suppliant for the number of seconds, the authenticator re-
transmits the request to the suppliant. In hiD 6615 S223/S323, you can set the number of
seconds that the authenticator should wait for a response to request/identity packet from
the suppliant before retransmitting the request.
To set a period that the authenticator waits for a response, use the following command.
Command Mode
Description
dot1x timeout quiet-period
<1-
65535> PORTS
Sets reattempt interval for requesting request/identity
packet.
1-65535: reattempt interval seconds
PORTS: enters port number
no dot1x timeout quiet-period
PORTS
Global
Disables the interval for requesting identity.
4.5.2.4 802.1x
Re-authentication
In 4.5.2.2 Configuring the Interval of Re-Authentication, it is described even though the
user is accessible to network, he should be authenticated so that the changed database
is applied to.
Besides, because of various reasons managing RADIUS server and 802.1x authentica-
tion port, the user is supposed to be re-authenticated every regular time.
To implement re-authentication immediately regardless of configured time interval, user