Dell PowerConnect W-Airwave W-Airwave 7.2 Configuration Guide - Page 60

Table 10 Profiles > AAA > Advanced Authentication Profile Settings Field Default Description Authentication Timers User Idle Timeout 300 seconds Maximum period, in seconds, after which a client is considered idle if there is no user traffic from the client. The timeout period is reset if there is a user traffic. After this timeout period has elapsed, the controller sends probe packets to the client; if the client responds to the probe, it is considered active and the User Idle Timeout is reset (an active client that is not initiating new sessions is not removed). If the client does not respond to the probe, it is removed from the system. Range: 30 to 15300 seconds Fast Aging of Multiple No Instances of User When this feature is enabled, the controller actively sends probe packets to all users with the same MAC address but different IP addresses. The users that fail to respond are purged from the system. This command enables quick detection of multiple instances of the same MAC address in the user table and removal of an "old" IP address. This can occur when a client (or an AP connected to an untrusted port on the controller) changes its IP address. Dead Time for down 10 minutes Authentication Server (0- 60 min) Maximum period, in minutes, that the controller considers an unresponsive authentication server to be "out of service". This timer is only applicable if there are two or more authentication servers configured on the controller. If there is only one authentication server configured, the server is never considered out of service and all requests are sent to the server. If one or more backup servers are configured and a server is unresponsive, it is marked as out of service for the dead time; subsequent requests are sent to the next server on the priority list for the duration of the dead time. If the server is responsive after the dead time has elapsed, it can take over servicing requests from a lowerpriority server; if the server continues to be unresponsive, it is marked as down for the dead time. Range: 0-50 Unauthenticated User Lifetime (0-255 min) 5 minutes Maximum time, in minutes, unauthenticated clients are allowed to remain logged on. Range: 0-255 RADIUS Client RFC 3576 Server UDP 3799 Port (1-65535) Configures the UDP port to receive requests from a RADIUS server that can send user disconnect and change-of-authorization messages, as described in RFC 3576, "Dynamic Authorization Extensions to Remote Dial In User Service (RADIUS)". NOTE: This parameter can only be used on the master controller. DNS Query Interval DNS Query Interval (1- 15 1440 min) If you define a RADIUS server using the FQDN of the server rather than its IP address, the controller will periodically generate a DNS request and cache the IP address returned in the DNS response. By default, DNS requests are sent every 15 minutes 3. Select Add or Save. The added or edited Advanced Authentication profile appears on the Profiles > AAA page. 60 | Dell PowerConnect W Configuration Reference Dell PowerConnect W AirWave 7.2 | Configuration Guide