HP 6125G HP 6125G & 6125G/XG Blade Switches Security Configuration Gui - Page 92
Specifying an access control method, Setting the maximum number of concurrent 802.1X users on a port
View all HP 6125G manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 92 highlights
Specifying an access control method You can specify an access control method for one port in Ethernet interface view, or for multiple ports in system view. If different access control methods are specified for a port in system view and Ethernet interface view, the one specified later takes effect. To specify the access control method: Step 1. Enter system view. 2. Specify an access control method. Command system-view • (Approach 1) In system view: dot1x port-method { macbased | portbased } [ interface interface-list ] • (Approach 2) In Ethernet interface view: a. interface interface-type interface-number b. dot1x port-method { macbased | portbased } Remarks N/A Optional. Use either approach. By default, MAC-based access control applies. Setting the maximum number of concurrent 802.1X users on a port You can set the maximum number of concurrent 802.1X users for ports individually in Ethernet interface view or in bulk in system view. If different settings are configured for a port in both views, the setting configured later takes effect. To set the maximum number of concurrent 802.1X users on a port: Step 1. Enter system view. Command system-view • (Approach 1) In system view: dot1x max-user user-number [ interface 2. Set the maximum interface-list ] number of concurrent 802.1X users on a • (Approach 2) In Ethernet interface view: port. a. interface interface-type interface-number b. dot1x max-user user-number [ interface interface-list ] Remarks N/A Optional. Use either approach. The default maximum number of concurrent 802.1X users on a port is 2048. Setting the maximum number of authentication request attempts The network access device retransmits an authentication request if it receives no response to the request it has sent to the client within a period of time (specified by using the dot1x timer tx-period tx-period-value command or the dot1x timer supp-timeout supp-timeout-value command). The network 82