Concept Guide
30| aaa authentication dot1x Dell Networking W-Series ArubaOS 6.5.x| Reference Guide
Parameter Description Range Default
enable-token
-caching
If you select EAP-GTC as the
inner EAP method, you can
enable the controller to cache
the username and password
of each authenticated user.
The controller continues to
reauthenticate users with the
remote authentication server,
however, if the authentication
server is not available, the
controller will inspect its
cached credentials to
reauthenticate users.
— disabled
inner-eap-type eap-gtc|eap-mschapv2
When EAP-PEAP is the EAP
method, one of the following
inner EAP types is used:
EAP-Generic Token Card
(GTC): Described in RFC 2284,
this EAP method permits the
transfer of unencrypted
usernames and passwords
from client to server. The
main uses for EAP-GTC are
one-time token cards such as
SecureID and the use of LDAP
or RADIUS as the user
authentication server. You
can also enable caching of
user credentials on the
controller as a backup to an
external authentication
server.
EAP-Microsoft Challenge
Authentication Protocol
version 2 (MS-CHAPv2):
Described in RFC 2759, this
EAP method is widely
supported by Microsoft
clients.
eap-
gtc/eap-
mschap
v2
eap-
mschap
v2
token-caching-period <hours>
If you select EAP-GTC as the
inner EAP method, you can
specify the timeout period, in
hours, for the cached
information.
(any) 24 hours
timer
Sets timer options for 802.1X
authentication:
idrequest-
period <seconds>
Interval, in seconds, between
identity request retries.
1-65535 5
seconds