beautypg.com

Timer and maximum user number configuration – H3C Technologies H3C S3600 Series Switches User Manual

Page 487

background image

1-14

To do…

Use the command…

Remarks

Enable online user
handshaking

dot1x handshake enable

Optional

By default, online user handshaking
is enabled.

Enter Ethernet port view

interface interface-type
interface-number

Enable the handshake
packet protection function

dot1x handshake secure

Optional

By default, the handshake packet
protection function is disabled.

z

802.1x configurations take effect only after you enable 802.1x both globally and for specified ports.

z

The settings of 802.1x and MAC address learning limit are mutually exclusive. Enabling 802.1x on

a port will prevent you from setting the limit on MAC address learning on the port and vice versa.

z

The settings of 802.1x and aggregation group member are mutually exclusive. Enabling 802.1x on

a port will prevent you from adding the port to an aggregation group and vice versa.

z

When a device operates as an authentication server, its authentication method for 802.1x users

cannot be configured as EAP.

z

With the support of the H3C proprietary client, handshake packets are used to test whether or not a

user is online.

z

As clients that are not of H3C do not support the online user handshaking function, switches cannot

receive handshake acknowledgement packets from them in handshaking periods. To prevent

users being falsely considered offline, you need to disable the online user handshaking function in

this case.

z

The handshake packet protection function requires the cooperation of the client and the

authentication server. If either of the two ends does not support the function, you need to disable it

on the other one.

Timer and Maximum User Number Configuration

Follow these steps to configure 802.1x timers and the maximum number of users:

To do…

Use the command...

Remarks

Enter system view

system-view

In system
view

dot1x max-user user-number
[ interface interface-list ]

interface interface-type
interface-number

dot1x max-user user-number

Set the
maximum
number of
concurrent
on-line users
for specified
ports

In port view

quit

Optional

By default, a port can
accommodate up to 256 users at
a time.

This manual is related to the following products:
See also other documents in the category H3C Technologies Routers: