Alcatel-Lucent 7710 SR OS Interface Configuration Manual page 89

802.1x Timers
The 802.1x authentication procedure is controlled by a number of configurable timers and scalars.
There are two separate sets, one for the EAPOL message exchange and one for the RADIUS
message exchange. See
EAPOL timers:
•
•
•
RADIUS timer and scaler:
•
•
7710 SR OS Interface Configuration Guide
Figure 21
— Indicates how many seconds the Authenticator will listen for an
transit-period
EAP-Response/ID frame. If the timer expires, a new EAP-Request/ID frame will be sent
and the timer restarted. The default value is 60. The range is 1-3600 seconds.
supplicant-timeout
procedure (transmission of first EAP-Request/ID frame). If the timer expires before an
EAP-Response/ID frame is received, the 802.1x authentication session is considered as
having failed. The default value is 30. The range is 1 — 300.
— Indicates number of seconds between authentication sessions It is
quiet-period
started after logoff, after sending an EAP-Failure message or after expiry of the
supplicant-timeout timer. The default value is 60. The range is 1 — 3600.
— Indicates the maximum number of times that the router will send an
max-auth-req
authentication request to the RADIUS server before the procedure is considered as having
failed. The default value is value 2. The range is 1 — 10.
— Indicates how many seconds the authenticator will wait for a
server-timeout
RADIUS response message. If the timer expires, the access request message is sent again,
up to max-auth-req times. The default value is 60. The range is 1 — 3600 seconds.
for an example of the timers.
— This timer is started at the beginning of a new authentication
Interface Configuration
Page 89