Cisco Cisco SF302-08PP 8-port 10 100 PoE+ Managed Switch Manual De Mantenimiento
Security: 802.1X Authentication
802.1X Configuration Through the GUI
449
Cisco 300 Series Managed Switches Administration Guide
19
•
Quiet Period—Enter the number of seconds that the device remains in the
quiet state following a failed authentication exchange.
quiet state following a failed authentication exchange.
•
Resending EAP—Enter the number of seconds that the device waits for a
response to an Extensible Authentication Protocol (EAP) request/identity
frame from the supplicant (client) before resending the request.
response to an Extensible Authentication Protocol (EAP) request/identity
frame from the supplicant (client) before resending the request.
•
Max EAP Requests—Enter the maximum number of EAP requests that can
be sent. If a response is not received after the defined period (supplicant
timeout), the authentication process is restarted.
be sent. If a response is not received after the defined period (supplicant
timeout), the authentication process is restarted.
•
Supplicant Timeout—Enter the number of seconds that lapses before EAP
requests are resent to the supplicant.
requests are resent to the supplicant.
•
Server Timeout—Enter the number of seconds that lapses before the
device resends a request to the authentication server.
device resends a request to the authentication server.
STEP 4
Click Apply. The port settings are written to the Running Configuration file.
Defining Host and Session Authentication
The Host and Session Authentication page enables defining the mode in which
802.1X operates on the port and the action to perform if a violation has been
detected.
802.1X operates on the port and the action to perform if a violation has been
detected.
for an explanation of these modes.
To define 802.1X advanced settings for ports:
STEP 1
Click Security > 802.1X/MAC/Web Authentication > Host and Session
Authentication.
Authentication.
802.1X authentication parameters are described for all ports. All fields except the
following are described in the Edit page.
following are described in the Edit page.
•
Number of Violations—Displays the number of packets that arrive on the
interface in single-host mode, from a host whose MAC address is not the
supplicant MAC address.
interface in single-host mode, from a host whose MAC address is not the
supplicant MAC address.
STEP 2
Select a port, and click Edit.
STEP 3
Enter the parameters.
•
Interface—Enter a port number for which host authentication is enabled.