beautypg.com

Allied Telesis AT-S62 User Manual

Page 622

background image

Chapter 30: 802.1x Port-based Access Control

Section VI: Port Security

622

to the client through the interface

1 - Quiet Period
Sets the number of seconds that the port remains in the quiet state
following a failed authentication exchange with the clien

t. The

default value is 60 seconds. The range is 0 to 65,535 seconds.

2 - TX Period
Sets the number of seconds that the switch waits for a response to an
EAP-request/identity frame from the client before retransmitting the
request. The default value is 30 seconds. The range is 1 to 65,535
seconds.

3 - Reauth Enabled
Controls whether the client must periodically reauthenticate. The
default setting of enabled requires the client to periodically
reauthenticate. The time period between reauthenations is set with
option 4 - Reauth Period. If this parameter is set to disabled, the client
is not required to reauthenticate after the initial authentication,
unless there is a change to the status of the link between the
supplicant and the switch or the switch is reset or power cycled.

4 - Reauth Period
Specifies the time period between reauthentications of the client. The
default value is 3600 seconds. The range is 1 to 65,535 seconds.
Option 3 - Reauth Enabled must be set to Enabled for this parameter
to be operational.

5 - Supplicant Timeout
Sets the switch-to-client retransmission time for the EAP-request
frame. The default value for this parameter is 30 seconds. The range is
1 to 600 seconds.

6 - Server Timeout
Sets the timer used by the switch to determine authentication server
timeout conditions. The default value for this parameter is 30
seconds. The range is 1 to 65,535 seconds.

7 - Max Requests
Specifies the maximum number of times that the switch retransmits
an EAP Request packet to the client before it times out the
authentication session. The default value for this parameter is 2
retransmissions. The range is 1 to 10 retransmissions.

8 - Control Direction
Specifies how the port is to handle ingress and egress broadcast and
multicast packets when in the unauthorized state. When a port is set
to the Authenticator role, it remains in the unauthorized state until
the client logs on by providing a username and password
combination. In the unauthorized state, the port will only accept EAP

See also other documents in the category Allied Telesis Computer hardware: