Specifications
8-10
Catalyst 2970 Switch Software Configuration Guide
78-15462-03
Chapter8 Configuring 802.1X Port-Based Authentication
Configuring 802.1X Authentication
• Upgrading from a Previous Software Release, page 8-12
• Configuring 802.1X Authentication, page 8-12 (required)
• Configuring the Switch-to-RADIUS-Server Communication, page 8-13 (required)
• Configuring Periodic Re-Authentication, page 8-14 (optional)
• Manually Re-Authenticating a Client Connected to a Port, page 8-15 (optional)
• Changing the Quiet Period, page 8-15 (optional)
• Changing the Switch-to-Client Retransmission Time, page 8-16 (optional)
• Setting the Switch-to-Client Frame-Retransmission Number, page 8-17 (optional)
• Configuring the Host Mode, page 8-17 (optional)
• Configuring a Guest VLAN, page 8-18 (optional)
• Resetting the 802.1X Configuration to the Default Values, page 8-19 (optional)
Default 802.1X Configuration
Table 8-1 shows the default 802.1X configuration.
Table 8-1 Default 802.1X Configuration
Feature Default Setting
Authentication, authorization, and
accounting (AAA)
Disabled.
RADIUS server
• IP address
• UDP authentication port
• Key
• None specified.
• 1812.
• None specified.
Switch 802.1X enable state Disabled.
Per-interface 802.1X enable state Disabled (force-authorized).
The port sends and receives normal traffic without
802.1X-based authentication of the client.
Periodic re-authentication Disabled.
Number of seconds between
re-authentication attempts
3600 seconds.
Quiet period 60 seconds (number of seconds that the switch remains in
the quiet state following a failed authentication exchange
with the client).
Retransmission time 30 seconds (number of seconds that the switch should
wait for a response to an EAP request/identity frame
from the client before resending the request).
Maximum retransmission number 2 times (number of times that the switch will send an
EAP-request/identity frame before restarting the
authentication process).
Host mode Single-host mode.