beautypg.com

Configuring periodic re-authentication, Re-authenticating a port manually – Brocade TurboIron 24X Series Configuration Guide User Manual

Page 997

background image

Brocade TurboIron 24X Series Configuration Guide

963

53-1003053-01

Configuring 802.1X port security

auto – The controlled port is unauthorized until authentication takes place between the Client and
Authentication Server. Once the Client passes authentication, the port becomes authorized. This
activates authentication on an 802.1X-enabled interface.

NOTE

You cannot enable 802.1X port security on ports that have any of the following features enabled:

Link aggregation

Metro Ring Protocol (MRP)

Mirror port

Trunk port

Configuring periodic re-authentication

You can configure the device to periodically re-authenticate Clients connected to 802.1X-enabled
interfaces. When you enable periodic re-authentication, the device re-authenticates Clients every
3,600 seconds by default. You can optionally specify a different re-authentication interval of
between 1 – 4294967295 seconds.

To configure periodic re-authentication using the default interval of 3,600 seconds, enter the
following command.

TurboIron(config-dot1x)#re-authentication

Syntax: [no] re-authentication

To configure periodic re-authentication with an interval of 2,000 seconds, enter the following
commands.

TurboIron(config-dot1x)#re-authentication

TurboIron(config-dot1x)#timeout re-authperiod 2000

Syntax: [no] timeout re-authperiod <seconds>

The re-authentication interval is a global setting, applicable to all 802.1X-enabled interfaces. To
re-authenticate Clients connected to a specific port manually, use the dot1x re-authenticate
command. Refer to

“Re-authenticating a port manually”

, below.

Re-authenticating a port manually

When periodic re-authentication is enabled, by default the device re-authenticates Clients
connected to an 802.1X-enabled interface every 3,600 seconds (or the time specified by the dot1x
timeout re-authperiod command). You can also manually re-authenticate Clients connected to a
specific port.

For example, to re-authenticate Clients connected to interface 1, enter the following command.

TurboIron#dot1x re-authenticate e 1

Syntax: dot1x re-authenticate ethernet

The parameter is a valid port number.

See also other documents in the category Brocade Computer Accessories: