LevelOne FGL-2870 User Manual

Authentication Commands

4-153

4

- server-timeout

– Server timeout.

- reauth-max

– Maximum number of reauthentication attempts.

- max-req

– Maximum number of times a port will retransmit

an EAP request/identity packet to the client
before it times out the authentication session
(page 4-146).

- Status

– Authorization status (authorized or not).

- Operation Mode

– Shows if single or multiple hosts (clients) can

connect to an 802.1X-authorized port.

- Max Count

– The maximum number of hosts allowed to

access this port (page 4-147).

- Port-control

– Shows the dot1x mode on a port as auto,

force-authorized, or force-unauthorized
(page 4-146).

- Supplicant

– MAC address of authorized client.

- Current Identifier

– The integer (0-255) used by the Authenticator to

identify the current authentication session.

- Intrusion action

– Shows whether the switch will block all non-EAP

traffic or assign traffic on the port to a guest
VLAN if authentication fails.

• Authenticator State Machine

- State

– Current state (including initialize, disconnected,

connecting, authenticating, authenticated, aborting,
held, force_authorized, force_unauthorized).

- Reauth Count

– Number of times connecting state is re-entered.

• Backend State Machine

- State

– Current state (including request, response,

success, fail, timeout, idle, initialize).

- Request Count

– Number of EAP Request packets sent to the

Supplicant without receiving a response.

- Identifier(Server) – Identifier carried in the most recent EAP Success,

Failure or Request packet received from the
Authentication Server.

• Reauthentication State Machine

- State

– Current state (including initialize, reauthenticate).