User's Manual

ManualsBrandsCisco Systems ManualsElectronics4.9 GHz WMIC Mini PCI Module

161

162

163

164

165

166

167

168

169

170

8-10

Cisco 3200 Series Wireless MIC Software Configuration Guide

OL-7734-02

Chapter 8 Configuring Authentication Types

Configuring Authentication Types

bridge(config-if)# ssid batman

bridge(config-ssid)# wpa-psk ascii batmobile65

bridge(config-ssid)# end

Configuring Authentication Holdoffs, Timeouts, and Intervals

Beginning in privileged EXEC mode, follow these steps to configure holdoff times, reauthentication

periods, and authentication timeouts for non-root bridges authenticating through your root bridge:

Use the no form of these commands to reset the values to default settings.

Setting Up a Non-Root Bridge as a LEAP Client

You can set up a non-root bridge to authenticate to your network like other wireless client devices. After

you provide a network username and password for the non-root bridge, it authenticates to your network

using LEAP, Cisco's wireless authentication method, and receives and uses dynamic WEP keys.

Setting up a non-root bridge as a LEAP client requires three major steps:

1. Create an authentication username and password for the non-root bridge on your authentication

server.

2. Configure LEAP authentication on the root bridge to which the non-root bridge associates.

3. Configure the non-root bridge to act as a LEAP client.

Command Purpose

Step 1

configure terminal Enter global configuration mode.

Step 2

dot11 holdoff-time seconds Enter the number of seconds a root bridge must wait before it

disassociates and idle client. Enter a value from 1 to 65555

seconds.

Step 3

interface dot11radio 0 Enter interface configuration mode for the radio interface.

Step 4

dot1x client-timeout seconds Enter the number of seconds the bridge should wait for a reply

from a non-root bridge attempting to authenticate before the

authentication fails. Enter a value from 1 to 65555 seconds.

Step 5

dot1x reauth-period seconds

[server]

Enter the interval in seconds that the WMIC waits before

forcing an authenticated non-root bridge to reauthenticate.

• (Optional) Enter the server keyword to configure the

bridge to use the reauthentication period specified by the

authentication server. If you use this option, configure your

authentication server with RADIUS attribute 27,

Session-Timeout. This attribute sets the maximum number

of seconds of service to be provided to the non-root bridge

before termination of the session or prompt. The server

sends this attribute to the root bridge when a non-root

bridge performs EAP authentication.

Step 6

end Return to privileged EXEC mode.

Step 7

copy running-config startup-config (Optional) Save your entries in the configuration file.