Asante Technologies 35516 User Manual

- 85 -

5.14 802.1x Support

802.1x is a standard for passing Extensible Authentication Protocol (EAP) information over a network. This enables
you to restrict network access on a per-port basis.

This section lists the commands needed to configure the IntraCore 35516 to act as an EAP authentication server.
Please refer to the IEEE 802.1X standard (available on the web at standards.ieee.org/getieee802/) for details of the
terminology.

5.14.1 Configuration Mode Commands

Command Purpose

dot1x default

Sets 802.1x parameters to default values as follows:

Sys-auth-ctrl

disabled

Max-req

2

seconds

Quiet-period

60

seconds

Re-authperiod

3600

seconds

Server-timeout

30

seconds

Supplicant-timeout 30

seconds

Tx-period 30

seconds

All interfaces are in “force-authenticated” mode.

RADIUS server

192.168.0.1

Authentication port

1812

Shared key

radius-key

NAS-identifier

IntraCore_35516-XXXXXX

dot1x sys-auth-ctrl [enable | disable]

Enables/disables the authentication feature of the switch.

dot1x max-req <1-10>

Sets the maximum number of times an EAP-request/identity
frame is sent before restarting the authentication process.

dot1x re-authenticate [interface
IFNAME]

Manually re-authenticate an interface or all interfaces.

dot1x re-authentication

Enables the automatic re-authentication state machine.

dot1x timeout quiet-period <0-65535>

Sets the period of the quietWhile timer.

dot1x timeout re-authperiod <1-
4294967295>

Sets the period between re-authentication attempts.

dot1x timeout tx-period <1-65535>

Sets time in seconds to wait for a response to an EAP-
request/identity frame from client before re-transmitting the
request.

dot1x timeout supplicant-timeout <1-
300>

Sets time in seconds to wait for supplicant timeout.

dot1x timeout server-timeout <1-300>

Sets time in seconds to wait for server timeout.