beautypg.com

Retransmissions from the radius server – Brocade FastIron Ethernet Switch Security Configuration Guide User Manual

Page 194

background image

You can optionally change the number of times the Brocade device should retransmit the EAP-
request/identity frame. You can specify between 1 - 10 frame retransmissions. For example, to
configure the device to retransmit an EAP-request/identity frame to a Client a maximum of three times,
enter the following command:

device(config-dot1x)#auth-max 3

Syntax: auth-max value

value is a number from 1 - 10. The default is 2.

Wait interval and number of EAP-request/identity frame
retransmissions from the RADIUS server

Acting as an intermediary between the RADIUS Authentication Server and the Client, the Brocade
device receives RADIUS messages from the RADIUS server, encapsulates them as EAPOL frames,
and sends them to the Client. By default, when the Brocade device relays an EAP-Request frame from
the RADIUS server to the Client, it expects to receive a response from the Client within 30 seconds. If
the Client does not respond within the allotted time, the device retransmits the EAP-Request frame to
the Client. Also by default, the Brocade device retransmits the EAP-request frame twice. If no EAP-
response frame is received from the Client after two EAP-request frame retransmissions, the device
restarts the authentication process with the Client.

You can optionally configure the amount of time the device will wait before retransmitting an EAP-
request/identity frame, and the number of times the EAP-request/identity frame will be transmitted.
This section provides the command syntax for these features.

Setting the wait interval for EAP frame retransmissions

By default, when the Brocade device relays an EAP-Request frame from the RADIUS server to the
Client, it expects to receive a response from the Client within 30 seconds. You can optionally specify
the wait interval using the supptimeout command.

For example, to configure the device to retransmit an EAP-Request frame if the Client does not
respond within 45 seconds, enter the following command.

device(config-dot1x)#supptimeout 45

Syntax: supptimeout seconds

seconds is a number from 1 - 4294967295 seconds. The default is 30 seconds.

Setting the maximum number of EAP frame retransmissions

You can optionally specify the number of times the Brocade device will retransmit the EAP-request
frame. You can specify between 1 - 10 frame retransmissions. For example, to configure the device to
retransmit an EAP-request frame to a Client a maximum of three times, enter the following command.

device(config-dot1x)#maxreq 3

Syntax: maxreq value

value is a number from 1 - 10. The default is 2.

Wait interval and number of EAP-request/identity frame retransmissions from the RADIUS server

194

FastIron Ethernet Switch Security Configuration Guide

53-1003088-03

See also other documents in the category Brocade Computer Accessories: