beautypg.com

Setting 802.1x timers – H3C Technologies H3C S7500E Series Switches User Manual

Page 107

background image

5-17

Setting 802.1X Timers

In an 802.1X authentication process, multiple 802.1X timers work on the device to guarantee

that the client, the device, and the RADIUS server can interact with each other properly. 802.1X

timers include:

z

Username request timeout timer (tx-period): This timer is triggered by the device in two

cases. The first case is when the device sends an EAP-Request/Identity packet to a client

in response to an authentication request. If the device receives no response before this

timer expires, it retransmits the request. The second case is when the device multicasts

EAP-Request/Identity packets to clients to detect clients who cannot request authentication

actively. In this case, this timer sets the interval between sending the multicast

EAP-Request/Identity packets.

z

Client timeout timer (supp-timeout): After a device sends an EAP-Request/MD5 Challenge

packet to a client, it starts this timer. If this timer expires but it receives no response from

the client, it retransmits the request.

z

Server timeout timer (server-timeout): After a device sends a RADIUS Access-Request

packet to the authentication server, it starts this timer. If this timer expires but it receives no

response from the server, it retransmits the request.

z

Handshake timer (handshake-period): After a client passes authentication, the device

sends the client handshake requests at this interval to check whether the client is online. If

the device receives no response after sending the allowed maximum number of handshake

requests, it considers that the client is logged off.

z

Quiet timer (quiet-period): When a client fails the authentication, the device refuses further

authentication requests from the client within this period of time.

z

Periodic re-authentication timer (reauth-period): If periodic re-authentication is enabled on

a port, the device re-authenticates online users on the port at the interval specified by this

timer.

Follow these steps to set 802.1X timers:

This manual is related to the following products:
See also other documents in the category H3C Technologies Routers: