Specifications
Setting EAP Retransmission Attempts
RoamAbout Mobility System Software Configuration Guide 19-5
Setting EAP Retransmission Attempts
ThefollowingcommandsetsthemaximumnumberoftimestheRASretransmitsan802.1X‐
encapsulatedEAPrequesttothesupplicant(client)beforeittimesouttheauthenticationsession:
set dot1x max-req number-of-retransmissions
Thedefaultnumberofretransmissionsis2.Youcanspecifyfrom0to10retransmitattempts.
Examples
Typethefollowingcommandtosetthemaximumnumberofretransmissiona ttemptsto3:
RBT-8100# set dot1x max-req 3
success: dot1x max request set to 3.
Toresetthenumberofretransmissionattemptstothedefaultsetting,typethefollowing
command:
RBT-8100# clear dot1x max-req
success: change accepted.
Managing 802.1X Client Reauthentication
Reauthenticationof802.1Xwirelesssupplicants(clients)isenabledontheRASbydefault.By
default,theRASwaits3600 seconds(1 hour)betweenauthenticationattempts.Youcandisable
reauthenticationorchangethedefaults.
Enabling and Disabling 802.1X Reauthentication
Thefollowingcommandenablesordisablesthereauthentication ofsupplicants(clients)bythe
RAS:
set dot1x reauth {enable | disable}
Reauthenticationisenabledbydefault.
Example
Typethefollowingcommandtoreenablereauthenticationof clients:
RBT-8100# set dot1x reauth enable
success: dot1x reauthentication enabled.
Note: To support SSIDs that have both 802.1X and static WEP clients, MSS sends a maximum of
two ID requests, even if this parameter is set to a higher value. Setting the parameter to a higher
value does affect all other types of EAP messages.
Note: You also can use the RADIUS session-timeout attribute to set the reauthentication timeout for
a specific client. In this case, MSS uses the timeout that has the lower value. If the session-timeout is
set to fewer seconds than the global reauthentication timeout, MSS uses the session-timeout for the
client. However, if the global reauthentication timeout is shorter than the session-timeout, MSS uses
the global timeout instead.