Configuring Periodic Re-Authentication - Cisco Catalyst 2975 Software Configuration Manual
Ios release 12.2(55)se
Hide thumbs
Also See for Catalyst 2975:
- Hardware installation manual (62 pages) ,
- Brochure (19 pages) ,
- Getting started manual (17 pages)
Table of Contents
Advertisement
Configuring 802.1x Authentication
To disable multiple hosts on the port, use the no authentication host-mode or the no dot1x host-mode
multi-host interface configuration command.
This example shows how to enable 802.1x authentication and to allow multiple hosts:
Switch(config)# interface gigabitethernet2/0/1
Switch(config-if)# dot1x port-control auto
Switch(config-if)# dot1x host-mode multi-host
Switch(config-if)# end
This example shows how to enable MDA and to allow both a host and a voice device on the port:
Switch(config)# interface gigabitethernet2/0/1
Switch(config-if)# dot1x port-control auto
Switch(config-if)# dot1x host-mode multi-domain
Switch(config-if)# switchport voice vlan 101
Switch(config-if)# end
Configuring Periodic Re-Authentication
You can enable periodic 802.1x client re-authentication and specify how often it occurs. If you do not
specify a time period before enabling re-authentication, the number of seconds between attempts
is 3600.
Beginning in privileged EXEC mode, follow these steps to enable periodic re-authentication of the client
and to configure the number of seconds between re-authentication attempts. This procedure is optional.
Command
Step 1
configure terminal
Step 2
interface interface-id
Step 3
authentication periodic
or
dot1x reauthentication
Step 4
authentication timer {{[inactivity |
reauthenticate]} {restart value}}
or
dot1x timeout reauth-period {seconds |
server}
Catalyst 2975 Switch Software Configuration Guide
10-44
Chapter 10
Purpose
Enter global configuration mode.
Specify the port to be configured, and enter interface configuration mode.
Enable periodic re-authentication of the client, which is disabled by
default.
Set the number of seconds between re-authentication attempts.
The authentication timer keywords have these meanings:
•
inactivity—Interval in seconds after which if there is no activity from
the client then it is unauthorized
reauthenticate—Time in seconds after which an automatic
•
re-authentication attempt is be initiated
restart value—Interval in seconds after which an attempt is made to
•
authenticate an unauthorized port
The dot1x timeout reauth-period keywords have these meanings:
seconds—Sets the number of seconds from 1 to 65535; the default is
•
3600 seconds.
server—Sets the number of seconds based on the value of the
•
Session-Timeout RADIUS attribute (Attribute[27]) and the
Termination-Action RADIUS attribute (Attribute [29]).
This command affects the behavior of the switch only if periodic
re-authentication is enabled.
Configuring IEEE 802.1x Port-Based Authentication
OL-19720-02
- Quick Links:
- Management Options
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
