D-Link xStack DGS-3420 Series Reference Manual page 293

xStack® DGS-3420 Series Layer 2 Managed Stackable Gigabit Switch Web UI Reference Guide
ServerTimeout
MaxReq
TxPeriod
ReAuthPeriod
ReAuthentication
Port Control
Capability
Direction
Forward EAPOL PDU
Max Users
Click the Refresh button to refresh the display table so that new entries will appear.
Click the Apply button to accept the changes made.
This value determines timeout conditions in the exchanges between the Authenticator and
the authentication server. The default setting is 30 seconds.
The maximum number of times that the Switch will retransmit an EAP Request to the
client before it times out of the authentication sessions. The default setting is 2. It is
defined in MaxReq, IEEE-802.1X-2001 page 47. The maximum number of times that the
state machine will retransmit an EAP Request packet to the Supplicant before it times out
the authentication session. Its default value is 2; it can be set by management to any
value in the range from 1 to 10.
This sets the TxPeriod of time for the authenticator PAE state machine. This value
determines the period of an EAP Request/Identity packet transmitted to the client. The
default setting is 30 seconds.
A constant that defines a nonzero number of seconds between periodic re-authentication
of the client. The default setting is 3600 seconds.
Determines whether regular re-authentication will take place on this port. The default
setting is Disabled.
This allows the user to control the port authorization state.
•
Select ForceAuthorized to disable 802.1X and cause the port to transition to the
authorized state without any authentication exchange required. This means the
port transmits and receives normal traffic without 802.1X-based authentication of
the client.
•
If ForceUnauthorized is selected, the port will remain in the unauthorized state,
ignoring all attempts by the client to authenticate. The Switch cannot provide
authentication services to the client through the interface.
•
If Auto is selected, it will enable 802.1X and cause the port to begin in the
unauthorized state, allowing only EAPOL frames to be sent and received through
the port. The authentication process begins when the link state of the port
transitions from down to up, or when an EAPOL-start frame is received. The
Switch then requests the identity of the client and begins relaying authentication
messages between the client and the authentication server.
The default setting is Auto.
This allows the 802.1X Authenticator settings to be applied on a per-port basis. Select
Authenticator to apply the settings to the port. When the setting is activated, a user must
pass the authentication process to gain access to the network. Select None disable
802.1X functions on the port.
Sets the administrative-controlled direction to Both or In. If Both is selected, control is
exerted over both incoming and outgoing traffic through the controlled port selected in the
first field. If In is selected, the control is only exerted over incoming traffic through the port
the user selected in the first field.
This is a port-based setting to control the forwarding of EAPOL PDU. When 802.1X
functionality is disabled globally or for a port, and if 802.1X forward PDU is enabled both
globally and for the port, a received EAPOL packet on the port will be flooded in the same
VLAN to those ports for which 802.1X forward PDU is enabled and 802.1X is disabled
(globally or just for the port). The default state is disabled.
Specifies the maximum number of users. The maximum user limit is 448 users. The
default is 16.
282