CLI Guide

Table Of Contents
Security Commands 1086
supp-timeout: 30 seconds
server-timeout: 30 seconds
Command Mode
Interface Configuration (Ethernet) mode
User Guidelines
Change the default value of the 802.1X/AAA timers only to adjust for unusual
circumstances, such as unreliable links or specific behavioral problems with
certain clients or authentication servers. Changing these values may result in
RADIUS server timeouts, failed authentications or switch behavior that is not
responsive to 802.1X clients, potentially including denial of network access.
It is strongly recommended that the authentication server be present within
the local site to ensure access to the network. Configuring the switch to use a
remote Active Directory or other authentication server operating over a
congested or unreliable link will not give local 802.1X clients a responsive
experience and may deny 802.1X clients access to the network.
The RADIUS server relies on the DNS service to resolve RADIUS host names.
A slow to respond DNS server will cause delays in processing of 802.1X client
authentications. An unresponsive DNS server will deny network access to
802.1X clients. It is strongly recommended that a local DNS server be used
whenever possible. Configuring the switch to use a remote Active Directory
or other DNS server operating over a congested or unreliable link will not give
local 802.1X clients a responsive experience and may deny 802.1X client
access.
Quiet-period:
During the quiet period, the switch does not accept or initiate any
authentication requests.
To provide a faster response time to the 802.1X clients, enter a smaller
number than the default.
Supp-timeout:
The default timeout value is set per IEEE 802.1x. This value is used in
conjunction with the dot1x timeout server-timeout command to limit the
amount of time a supplicant can remain in a pending authentication state.
Server-timeout: