3com MSR 20-20 참조 매뉴얼

C

HAPTER

 132: MAC A

UTHENTICATION

 C

ONFIGURATION

 C

OMMANDS

Use the mac-authentication domain command to specify the ISP domain for 
MAC authentication.

Use the undo mac-authentication domain command to restore the default.

By default, the default ISP domain (system) is used.

# Specify the ISP domain for MAC authentication as domain1.

<Sysname> systme-view

[Sysname] mac-authentication domain domain1 

mac-authentication timer { offline-detect offline-detect-value | quiet quiet-value | 
server-timeout server-timeout-value }

undo mac-authentication timer { offline-detect | quiet | server-timeout }

System view

offline-detect offline-detect-value: Specifies the offline detect interval, in the 
range 60 to 65,535 seconds.

quiet quiet-value: Specifies the quiet period, in the range 1 to 3,600 seconds.

server-timeout server-timeout-value: Specifies the server timeout period, in the 
range 100 to 300 seconds.

Use the mac-authentication timer command to set the MAC authentication 
timers.

Use the undo mac-authentication timer command to restore the defaults.

By default, the offline detect interval is 300 seconds, the quiet period is 60 
seconds, and the server timeout period is 100 seconds.

The following timers function in the process of MAC authentication:

■

Offline detect timer: At this interval, the device checks to see whether an online 
user has gone offline. Once detecting that a user becomes offline, the device 
sends to the RADIUS server a stop accounting notice.

■

Quiet timer: Whenever a user fails MAC authentication, the device does not 
initiate any MAC authentication of the user during such a period.

■

Server timeout timer: During authentication of a user, if the device receives no 
response from the RADIUS server in this period, it assumes that its connection 
to the RADIUS server has timed out and forbids the user from accessing the 
network.