Cisco Systems EA6500 Manual De Usuario

25-12

Catalyst 6500 Series Switch Cisco IOS Software Configuration Guide—Release 12.1 E

78-14099-04

Chapter 25 Configuring IEEE 802.1X Port-Based Authentication

Configuring 802.1X Port-Based Authentication

To change the quiet period, perform this task:

This example shows how to set the quiet time on the switch to 30 seconds:

Router(config-if)# dot1x timeout quiet-period 30

Changing the Switch-to-Client Retransmission Time

The client responds to the EAP-request/identity frame from the switch with an EAP-response/identity
frame. If the switch does not receive this response, it waits a set period of time (known as the
retransmission time), and then retransmits the frame.

Note

You should change the default value of this command only to adjust for unusual circumstances such as
unreliable links or specific behavioral problems with certain clients and authentication servers.

To change the amount of time that the switch waits for client notification, perform this task:

This example shows how to set 60 as the number of seconds that the switch waits for a response to an
EAP-request/identity frame from the client before retransmitting the request:

Router(config)# dot1x timeout tx-period 60

Command

Purpose

Step 1

Router(config)# interface type

slot/port

type = ethernet, fastethernet, gigabitethernet, or tengigabitethernet

Selects an interface to configure.

Step 2

Router(config-if)# dot1x timeout quiet-period

seconds

Sets the number of seconds that the switch remains in the
quiet state following a failed authentication exchange
with the client.

The range is 0 to 65535 seconds; the default is 60.

Router(config-if)# no dot1x timeout quiet-period

Returns to the default quiet time.

Step 3

Router(config-if)# end

Returns to privileged EXEC mode.

Step 4

Router# show dot1x all

Verifies your entries.