Reference Guide
802.1X | 79
Figure 5-9. Configuring a Reauthentiction Period
Configuring Timeouts
If the supplicant or the authentication server is unresponsive, the authenticator terminates the
authentication process after 30 seconds by default. This amount of time that the authenticator waits for a
response can be configured.
To terminate the authentication process due to an unresponsive supplicant:
To terminate the authentication process due to an unresponsive authentication server:
Figure 5-10 shows configuration information for a port for which the authenticator terminates the
authentication process for an unresponsive supplicant or server after 15 seconds.
Step Task Command Syntax Command Mode
1 Terminate the authentication process due to an
unresponsive supplicant.
dot1x supplicant-timeout seconds
Range: 1-300
Default: 30
INTERFACE
Step Task Command Syntax Command Mode
1 Terminate the authentication process due to an
unresponsive authentication server.
dot1x server-timeout seconds
Range: 1-300
Default: 30
INTERFACE
FTOS(conf-if-gi-2/1)#dot1x reauthentication interval 7200
FTOS(conf-if-gi-2/1)#dot1x reauth-max 10
FTOS(conf-if-gi-2/1)#do show dot1x interface gigabitethernet 2/1
802.1x information on Gi 2/1:
-----------------------------
Dot1x Status: Enable
Port Control: FORCE_AUTHORIZED
Port Auth Status: UNAUTHORIZED
Re-Authentication: Enable
Untagged VLAN id: None
Tx Period: 90 seconds
Quiet Period: 120 seconds
ReAuth Max: 10
Supplicant Timeout: 30 seconds
Server Timeout: 30 seconds
Re-Auth Interval: 7200 seconds
Max-EAP-Req: 10
Auth Type: SINGLE_HOST
Auth PAE State: Initialize
Backend State: Initialize
Auth PAE State: Initialize
Re-authentication Enabled
New Re-authentication Period
New Maximum