large number of users log in but cannot pass authentication, the switch may run out of ACL resources,
preventing other users from logging in. A timer called ACL timer is designed to solve this problem.
You can control the usage of ACL resources by setting the ACL timer. The ACL timer starts once a user
gets online. If the user has not passed authentication when the ACL timer expires, the occupied ACL
resources are released for other users to use. When a tremendous of access requests are present, you
can decrease the timeout period of the ACL timer appropriately for higher utilization of ACL resources.
Follow these steps to configure the ACL timer:
To do...
Enter system view
Set the ACL timer
Displaying and Maintaining Quick EAD Deployment
To do...
Display configuration
information about quick EAD
deployment
Quick EAD Deployment Configuration Example
Network requirements
A user connects to the switch directly. The switch connects to the Web server and the Internet. The user
will be redirected to the Web server to download the authentication client and upgrade software when
accessing the Internet through IE before passing authentication. After passing authentication, the user
can access the Internet.
Network diagram
Figure 2-1 Network diagram for quick EAD deployment
Use the command...
system-view
dot1x timer acl-timeout
acl-timeout-value
Use the command...
display dot1x [ sessions |
statistics ] [ interface
interface-list ]
2-3
Remarks
—
Required
By default, the ACL timeout
period is 30 minutes.
Remarks
Available in any view