Brocade FastIron Ethernet Switch Security Configuration Guide User Manual
Page 203
Output from the show dot1x configuration command. (Continued)
TABLE 16
Field
Description
Authentication-fail-action The configured authentication-failure action. This can be Restricted VLAN or Block
Traffic.
Mac Session Aging
Whether aging for dot1x-mac-sessions has been enabled or disabled for permitted or
denied dot1x-mac-sessions.
Mac Session max-age
The configured software aging time for dot1x-mac-sessions.
Protocol Version
The version of the 802.1X protocol in use on the device.
quiet-period
When the Brocade device is unable to authenticate a Client, the amount of time the
Brocade device waits before trying again (default 60 seconds). Refer to
on page 193.
tx-period
When a Client does not send back an EAP-response/identity frame, the amount of
time the Brocade device waits before retransmitting the EAP-request/identity frame to
a Client (default 30 seconds). Refer to
Setting the wait interval for EAP frame
on page 193.
supptimeout
When a Client does not respond to an EAP-request frame, the amount of time before
the Brocade device retransmits the frame. Refer to "
Setting the wait interval for EAP
on page 193.
servertimeout
When the Authentication Server does not respond to a message sent from the Client,
the amount of time before the Brocade device retransmits the message. Refer to
Specifying a timeout for retransmission of messages to the authentication server
on
page 195.
maxreq
The number of times the Brocade device retransmits an EAP-request/identity frame if it
does not receive EAP-response/identity frame from a Client (default 2 times). Refer to
an
Setting the maximum number of EAP frame retransmissions
reAuthmax
The maximum number of re-authentication attempts. Refer to
number of EAP frame retransmissions
re-authperiod
How often the device automatically re-authenticates Clients when periodic re-
authentication is enabled (default 3,600 seconds).
Refer to
Configuring periodic re-authentication
on page 192.
global strict security
Whether strict security mode is enabled or disabled globally. Refer to
enabling strict security mode for dynamic filter assignment
on page 188.
To display information about the 802.1X configuration on an individual port, enter the show dot1x
configuration ethernet command.
Brocade#show dot1x configuration ethernet 4/1/12
Port-Control : control-auto
filter strict security : Enable
Action on RADIUS timeout : Restart authentication
Authentication-fail-action : Restricted VLAN(299)
PVID State : Normal (1)
802.1X Port Security
FastIron Ethernet Switch Security Configuration Guide
203
53-1003088-03