HP 3500yl Series Access Security Manual page 670
Switch software
Hide thumbs
Also See for 3500yl Series:
- Release notes (219 pages) ,
- Specifications (16 pages) ,
- Features (6 pages)
Table of Contents
Advertisement
Configuring Port-Based and User-Based Access Control (802.1X)
Displaying 802.1X Configuration, Statistics, and Counters
HP Switch(config)# show port-access authenticator config
Port Access Authenticator Configuration
Port-access authenticator activated [No] : Yes
Allow RADIUS-assigned dynamic (GVRP) VLANs [No] : No
| Re-auth Access
Port | Period
---- + ------- -------- ----- ------- -------- ---------- -------- -----
1
| No
2
| No
...
Figure 13-12.Example of show port-access authenticator config Command
Table 13-2. Field Descriptions of show port-access authenticator config Command Output (Figure 13-12)
Field
Port-access
authenticator activated
Port
Re-auth Period
Access Control
Max reqs
Quiet Period
TX Timeout
Supplicant Timeout
Server Timeout
Cntrl Dir
13-58
Max
Quiet
Control
Reqs
Period
Auto
2
60
Auto
2
60
Description
Whether 802.1X authentication is enabled or disabled on specified port(s).
Port number on switch.
Period of time (in seconds) after which clients connected to the port need to be re-
authenticated.
Port's authentication mode:
Auto: Network access is allowed to any connected device that supports 802.1X
authentication and provides valid 802.1X credentials.
Authorized: Network access is allowed to any device connected to the port, regardless of
whether it meets 802.1X criteria.
Unauthorized: Network access is blocked to any device connected to the port, regardless of
whether the device meets 802.1X criteria.
Number of authentication attempts that must time-out before authentication fails and the
authentication session ends.
Period of time (in seconds) during which the port does not try to acquire a supplicant.
Period of time (in seconds) that the port waits to retransmit the next EAPOL PDU during an
authentication session.
Period of time (in seconds) that the switch waits for a supplicant response to an EAP request.
Period of time (in seconds) that the switch waits for a server response to an authentication
request.
Directions in which flow of incoming and outgoing traffic is blocked on 802.1X-aware port
that has not yet entered the authenticated state:
Both: Incoming and outgoing traffic is blocked on port until authentication occurs.
In: Only incoming traffic is blocked on port before authentication occurs. Outgoing traffic with
unknown destination addresses is flooded on the unauthenticated 802.1X-aware port.
TX
Supplicant Server
Timeout
Timeout
30
30
30
30
Cntrl
Timeout
Dir
30
both
30
in
Hide quick links:
Advertisement
Chapters
Table of Contents
