Alcatel-Lucent 7210 SAS M Interface Configuration Manual page 87

802.1x Timers
The 802.1x authentication procedure is controlled by a number of configurable timers and scalars.
There are two separate sets, one for the EAPOL message exchange and one for the RADIUS
message exchange. See
EAPOL timers:
•
•
•
RADIUS timer and scaler:
•
•
7210 SAS M, T, X, R6, Mxp Interface Configuration Guide
Figure 39
— Indicates how many seconds the Authenticator will listen for an EAP-
transit-period
Response/ID frame. If the timer expires, a new EAP-Request/ID frame will be sent and
the timer restarted. The default value is 60. The range is 1-3600 seconds.
— This timer is started at the beginning of a new authentication
supplicant-timeout
procedure (transmission of first EAP-Request/ID frame). If the timer expires before an
EAP-Response/ID frame is received, the 802.1x authentication session is considered as
having failed. The default value is 30. The range is 1 — 300.
— Indicates number of seconds between authentication sessions It is started
quiet-period
after logoff, after sending an EAP-Failure message or after expiry of the supplicant-
timeout timer. The default value is 60. The range is 1 — 3600.
— Indicates the maximum number of times that the router will send an
max-auth-req
authentication request to the RADIUS server before the procedure is considered as having
failed. The default value is value 2. The range is 1 — 10.
— Indicates how many seconds the authenticator will wait for a RADIUS
server-timeout
response message. If the timer expires, the access request message is sent again, up to
max-auth-req times. The default value is 60. The range is 1 — 3600 seconds.
for an example of the timers.
Interface Configuration
Page 81