Configuring The Online User Handshake Feature; Configuring The Authentication Trigger Feature; Configuration Guidelines; Configuration Procedure - HP 5920 Series Configuration Manual
Hide thumbs
Also See for 5920 Series:
- Command reference manual (607 pages) ,
- Configuration manual (322 pages) ,
- Fc and fcoe configuration manual (257 pages)
Table of Contents
Advertisement
Step
3.
Set the server timeout
timer.
Configuring the online user handshake feature
The online user handshake feature checks the connectivity status of online 802.1X users. The network
access device sends handshake messages to online users at the interval specified by the dot1x timer
handshake-period command. If no response is received from an online user after the access device has
made the maximum handshake attempts (set by the dot1x retry command), the device sets the user to the
offline state.
If the network has 802.1X clients that cannot exchange handshake packets with the network access
device, disable the online user handshake feature to prevent their connections from being
inappropriately torn down.
To configure the online user handshake feature:
Step
1.
Enter system view.
2.
(Optional.) Set the handshake
timer.
3.
Enter Layer 2 Ethernet
interface view.
4.
Enable the online handshake
feature.
Configuring the authentication trigger feature
The authentication trigger feature enables the network access device to initiate 802.1X authentication
when 802.1X clients cannot initiate authentication.
This feature provides the multicast trigger and unicast trigger (see
Configuration guidelines
When you configure the authentication trigger feature, follow these guidelines:
Enable the multicast trigger on a port when the clients attached to the port cannot send EAPOL-Start
•
packets to initiate 802.1X authentication.
•
Enable the unicast trigger on a port if only a few 802.1X clients are attached to the port and these
clients cannot initiate authentication.
To avoid duplicate authentication packets, do not enable both triggers on a port.
•
Configuration procedure
To configure the authentication trigger feature on a port:
Command
dot1x timer server-timeout
server-timeout-value
Command
system-view
dot1x timer handshake-period
handshake-period-value
interface interface-type
interface-number
dot1x handshake
74
Remarks
The default is 100 seconds.
Remarks
N/A
The default is 15 seconds.
N/A
By default, the feature is enabled.
"802.1X authentication
initiation").
- Quick Links:
- Configuration Guide
- Configuring Local Users
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
