8 To specify the number of seconds the WX switch waits before
retransmitting an Extensible Authentication Protocol over LAN (EAPoL)
packet, specify the timeout value (1 to 65,535 seconds) in the Retransmit
Timeout box. The default is 5 seconds.
9 To specify the number of seconds before the WX switch times out an
authentication session with a supplicant, specify the timeout value (1 to
65,535 seconds) in the Supplicant Timeout box. The default is 30
seconds.
10 To specify the number of seconds before the WX switch times out a
request to an authentication server, specify the timeout value (1 to
65,535 seconds) in the Authentication Server Timeout box. The default is
30 seconds.
11 To set the maximum number of times the WX switch retransmits an EAP
request to the supplicant before timing out the authentication session,
specify the value (0 to 10) in the Maximum Requests box. The default is
2 attempts.
To support SSIDs that have both 802.1X and static WEP clients, MSS
sends a maximum of two ID requests, even if this parameter is set to a
higher value. Setting the parameter to a higher value does affect all other
types of EAP messages.
12 To enable encryption key information to be sent to the client after
authentication in EAPoL-Key PDUs, select Key Transmit.
The WX switch sends EAPoL key messages after successfully
authenticating the client and receiving authorization attributes for the
client. If the client is using dynamic Wired-Equivalent Privacy protocol
(WEP), the EAPoL key messages are sent immediately after authorization.
To disable this option, clear Key Transmit. By default, this option is
enabled.
13 To enable reauthentication of supplicants, select Reauthentication.
To disable reauthentication, clear Reauthentication. By default,
supplicant reauthentication is enabled.
14 To specify the number of reauthentication requests the WX switch
attempts before the supplicant becomes unauthorized, specify the value
(1 to 10) in the Reauthentication Attempts box. The default is 2 attempts.
If the number of reauthentications for a wired authentication client is
greater than the maximum number of reauthentications allowed, MSS
sends an EAP failure packet to the client and removes the client from the
Configuring 802.1X Parameters
367