HP 6125XLG R2306-HP 6125XLG Blade Switch Security Command Reference - Page 106
dot1x timer
View all HP 6125XLG manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 106 highlights
dot1x timer Use dot1x timer to set 802.1X timers. Use undo dot1x timer to restore the defaults. Syntax dot1x timer { handshake-period handshake-period-value | quiet-period quiet-period-value | reauth-period reauth-period-value | server-timeout server-timeout-value | supp-timeout supp-timeout-value | tx-period tx-period-value } undo dot1x timer { handshake-period | quiet-period | reauth-period | server-timeout | supp-timeout | tx-period } Default The handshake timer is 15 seconds, the quiet timer is 60 seconds, the periodic re-authentication timer is 3600 seconds, the server timeout timer is 100 seconds, the client timeout timer is 30 seconds, and the username request timeout timer is 30 seconds. Views System view Predefined user roles network-admin Parameters handshake-period handshake-period-value: Sets the handshake timer in seconds. The value range is 5 to 1024. quiet-period quiet-period-value: Sets the quiet timer in seconds. The value range is 10 to 120. reauth-period reauth-period-value: Sets the periodic re-authentication timer in seconds. The value range is 60 to 7200. server-timeout server-timeout-value: Sets the server timeout timer in seconds. The value range is 100 to 300. supp-timeout supp-timeout-value: Sets the client timeout timer in seconds. The value range is 1 to 120. tx-period tx-period-value: Sets the username request timeout timer in seconds. The value range is 10 to 120. Usage guidelines You can set the client timeout timer to a high value in a low-performance network, set the quiet timer to a high value in a vulnerable network or a low value for quicker authentication response, or adjust the server timeout timer to adapt to the performance of different authentication servers. In most cases, the default settings are sufficient. The network device uses the following 802.1X timers: • Handshake timer (handshake-period)-Sets the interval at which the access device sends client handshake requests to check the online status of a client that has passed authentication. If the device receives no response after sending the maximum number of handshake requests, it considers that the client has logged off. • Quiet timer (quiet-period)-Starts when a client fails authentication. The access device must wait the time period before it can process the authentication attempts from the client. 97