Reference Guide

Configuring a Quiet Period after a Failed Authentication
If the supplicant fails the authentication process, the authenticator sends another Request Identity frame after 30 seconds by
default, but you can configure this period.
NOTE: The quiet period (dot1x quiet-period) is a transmit interval for after a failed authentication; the Request
Identity Re-transmit interval (dot1x tx-period) is for an unresponsive supplicant.
To configure a quiet period, use the following command.
Configure the amount of time that the authenticator waits to re-transmit a Request Identity frame after a failed
authentication.
INTERFACE mode
dot1x quiet-period seconds
The range is from 1 to 65535.
The default is 60 seconds.
The following example shows configuration information for a port for which the authenticator re-transmits an EAP Request
Identity frame:
after 90 seconds and a maximum of 10 times for an unresponsive supplicant
re-transmits an EAP Request Identity frame
The bold lines show the new re-transmit interval, new quiet period, and new maximum re-transmissions.
Dell(conf-if-range-Te-0/0)#dot1x tx-period 90
Dell(conf-if-range-Te-0/0)#dot1x max-eap-req 10
Dell(conf-if-range-Te-0/0)#dot1x quiet-period 120
Dell#show dot1x interface TenGigabitEthernet 2/1
802.1x information on Te 2/1:
-----------------------------
Dot1x Status: Enable
Port Control: AUTO
Port Auth Status: UNAUTHORIZED
Re-Authentication: Disable
Untagged VLAN id: None
Tx Period: 90 seconds
Quiet Period: 120 seconds
ReAuth Max: 2
Supplicant Timeout: 30 seconds
Server Timeout: 30 seconds
Re-Auth Interval: 3600 seconds
Max-EAP-Req: 10
Auth Type: SINGLE_HOST
Auth PAE State: Initialize
Backend State: Initialize
Forcibly Authorizing or Unauthorizing a Port
IEEE 802.1X requires that a port can be manually placed into any of three states:
ForceAuthorized an authorized state. A device connected to this port in this state is never subjected to the
authentication process, but is allowed to communicate on the network. Placing the port in this state is same as disabling
802.1X on the port.
ForceUnauthorized an unauthorized state. A device connected to a port in this state is never subjected to the
authentication process and is not allowed to communicate on the network. Placing the port in this state is the same as
shutting down the port. Any attempt by the supplicant to initiate authentication is ignored.
Auto an unauthorized state by default. A device connected to this port in this state is subjected to the authentication
process. If the process is successful, the port is authorized and the connected device can communicate on the network. All
ports are placed in the Auto state by default.
To set the port state, use the following command.
Place a port in the ForceAuthorized, ForceUnauthorized, or Auto state.
INTERFACE mode
802.1X
73