LevelOne GTL-2691 User Manual
Page 909
C
HAPTER
28
| Authentication Commands
802.1X Port Authentication
– 909 –
■
Reauth Max Retries – Maximum number of reauthentication
attempts.
■
Max Request – Maximum number of times a port will retransmit an
EAP request/identity packet to the client before it times out the
authentication session (
).
■
Operation Mode– Shows if single or multiple hosts (clients) can
connect to an 802.1X-authorized port.
■
Port Control–Shows the dot1x mode on a port as auto, force-
authorized, or force-unauthorized (
).
■
Intrusion Action– Shows the port response to intrusion when
authentication fails (
).
■
Supplicant– MAC address of authorized client.
◆
Authenticator PAE State Machine
■
State – Current state (including initialize, disconnected, connecting,
authenticating, authenticated, aborting, held, force_authorized,
force_unauthorized).
■
Reauth Count– Number of times connecting state is re-entered.
■
Current Identifier– The integer (0-255) used by the Authenticator to
identify the current authentication session.
◆
Backend State Machine
■
State – Current state (including request, response, success, fail,
timeout, idle, initialize).
■
Request Count– Number of EAP Request packets sent to the
Supplicant without receiving a response.
■
Identifier (Server)– Identifier carried in the most recent EAP
Success, Failure or Request packet received from the Authentication
Server.
◆
Reauthentication State Machine
State – Current state (including initialize, reauthenticate).
E
XAMPLE
Console#show dot1x
Global 802.1X Parameters
System Auth Control : Enabled
Authenticator Parameters:
EAPOL Pass Through : Disabled
802.1X Port Summary
Port Type Operation Mode Control Mode Authorized
-------- ------------- -------------- ------------------ ----------
1/1 Disabled Single-Host ForceAuthorized N/A
1/2 Disabled Single-Host ForceAuthorized N/A
.
.
.
1/25 Disabled Single-Host ForceAuthorized Yes
1/26 Enabled Single-Host Auto Yes