Product manual

o 'logoff-period' sets period of time after which a client will

be considered removed from the port for a lack of activity.

The default is 300 seconds.

o 'client-limit' sets the maximum number of clients to allow on

the port. This includes ALL clients (authenticated and

unauthenticated).

NOTE: No more than 32 unique client MAC addresses can be

authorized by both 802.1X and MAC/web-based

authentication together on the same port.

The 'no... client-limit' command allows unlimited number of

clients on the port. Authenticator makes no distinction between

clients and operates port as a single protocol entity with

no specic MAC address lter on the port.

The default is no client limit.

o 'initialize' re-initialize authentication on the specied

ports. That is, 'initialize' blocks inbound and outbound

trafc and restarts the authentication process on the

specied ports that are congured with 'control auto' (see

the 'control' parameter, described above) and actively

operating as authenticators.

o 'reauthenticate' forces re-authentication (unless the

authenticator is in 'HELD' state).

o 'clear-statistics' clears authenticator statistics

counters.

Next Available Options:

■ PORT-LIST -- Manage 802.1X on the device port(s). ([ethernet] PORT-LIST) (p. 42)

■ active -- Activate/deactivate 802.1X authenticator.(p. 27)

authorization

■ aaa authorization

Usage: [no] aaa authorization <commands> <radius>

Description: Congure authorization parameters on the switch.

Next Available Option:

■ commands -- Configure exec (shell) commands authorization. (p. 32)

auth-timeout

■ aaa port-access supplicant [ETHERNET] PORT-LIST auth-timeout < 1 to 300 >

Set the challenge reception timeout (default 30sec.).

Range: < 1 to 300 >

auth-vid

■ [no] aaa port-access authenticator [ETHERNET] PORT-LIST auth-vid

Congures VLAN where to move port after successful authentication (not congured

by default).

aaaCommand Line Interface Reference Guide