EasyManuals Logo
Home>Cisco>Switch>IE 3000

Cisco IE 3000 User Manual

Cisco IE 3000
760 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #222 background image
10-20
Cisco IE 3000 Switch Software Configuration Guide
OL-13018-01
Chapter 10 Configuring IEEE 802.1x Port-Based Authentication
Configuring IEEE 802.1x Authentication
IEEE 802.1x Authentication Configuration Guidelines
These section has configuration guidelines for these features:
• IEEE 802.1x Authentication, page 10-20
• VLAN Assignment, Guest VLAN, Restricted VLAN, and Inaccessible Authentication Bypass,
page 10-21
• MAC Authentication Bypass, page 10-22
•
IEEE 802.1x Authentication
These are the IEEE 802.1x authentication configuration guidelines:
• When IEEE 802.1x authentication is enabled, ports are authenticated before any other Layer 2
feature is enabled.
• If you try to change the mode of an IEEE 802.1x-enabled port (for example, from access to trunk),
an error message appears, and the port mode is not changed.
• If the VLAN to which an IEEE 802.1x-enabled port is assigned changes, this change is transparent
and does not affect the switch. For example, this change occurs if a port is assigned to a RADIUS
server-assigned VLAN and is then assigned to a different VLAN after re-authentication.
Quiet period 60 seconds (number of seconds that the switch remains in the quiet state
following a failed authentication exchange with the client).
Retransmission time 30 seconds (number of seconds that the switch should wait for a response to an
EAP request/identity frame from the client before resending the request).
Maximum retransmission number 2 times (number of times that the switch will send an EAP-request/identity
frame before restarting the authentication process).
Client timeout period 30 seconds (when relaying a request from the authentication server to the
client, the amount of time the switch waits for a response before resending the
request to the client.)
Authentication server timeout period 30 seconds (when relaying a response from the client to the authentication
server, the amount of time the switch waits for a reply before resending the
response to the server.)
You can change this timeout period by using the dot1x timeout
server-timeout interface configuration command.
Guest VLAN None specified.
Inaccessible authentication bypass Disabled.
Restricted VLAN None specified.
Authenticator (switch) mode None specified.
MAC authentication bypass Disabled.
Table 10-2 Default IEEE 802.1x Authentication Configuration (continued)
Feature Default Setting

Table of Contents

Other manuals for Cisco IE 3000

Preview: Getting Started Guide
Getting Started Guide32 pages
Preview: Hardware Installation Guide
Hardware Installation Guide186 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco IE 3000 and is the answer not in the manual?

Cisco IE 3000 Specifications

General IconGeneral
BrandCisco
ModelIE 3000
CategorySwitch
LanguageEnglish

Related product manuals