Dot1x max-auth-fail – Allied Telesis AlliedWare Plus Operating System Version 5.4.4C (x310-26FT,x310-26FP,x310-50FT,x310-50FP) User Manual
Page 1075

802.1X Commands
Software Reference for x310 Series Switches
C613-50046-01 REV A
AlliedWare Plus
TM
Operating System - Version 5.4.4C
41.9
dot1x max-auth-fail
Use this command to configure the maximum number of login attempts for a supplicant
(client device) using the auth-fail vlan feature, when using 802.1X port authentication on
an interface.
The no variant of this command resets the maximum login attempts for a supplicant
(client device) using the auth-fail vlan feature, to the default configuration of 3 login
attempts.
Syntax
dot1x max-auth-fail <0-10>
no dot1x max-auth-fail
Default
The default maximum number of login attempts for a supplicant on an interface using
802.1X port authentication is three (3) login attempts.
Mode
Interface Configuration for a static channel, a dynamic (LACP) channel group, or a switch
port.
Usage
This command sets the maximum number of login attempts for supplicants on an
interface. The supplicant is moved to the auth-fail VLAN from the Guest VLAN after the
number of failed login attempts using 802.1X authentication is equal to the number set
with this command.
See the related
auth auth-fail vlan command on page 43.3
. See also the section
Authentication VLAN” on page 42.29
for information about the auth-fail VLAN feature.
See the section
“Limitations on Allowed Feature Combinations” on page 42.29
for
information about restrictions regarding combinations of authentication enhancements
working together.
Examples
To configure the maximum number of login attempts for a supplicant on interface
port1.0.2
to a single (1) login attempt, use the commands:
To configure the maximum number of login attempts for a supplicant on interface
port1.0.2
to the default number of three (3) login attempts, use the commands:
Validation
Commands
Parameter
Description
<0-10>
Specify the maximum number of login attempts for supplicants
on an interface using 802.1X port authentication.
awplus#
configure terminal
awplus(config)#
interface port1.0.2
awplus(config-if)#
dot1x max-auth-fail 1
awplus#
configure terminal
awplus(config)#
interface port1.0.2
awplus(config-if)#
no dot1x max-auth-fail