×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

Dot1x reauth

Unanswered Question
Nov 27th, 2006
User Badges:
  • Silver, 250 points or more

Hi


I have a switchport configure for dot1x in multi-host(I have a 7911 connected). The switchport is re-authenticating me at regular intervals. It make sense to do that but were is it documented?


CSL02ZD#sh dot1x all

Sysauthcontrol Enabled

Dot1x Protocol Version 2

Critical Recovery Delay 100

Critical EAPOL Disabled


Dot1x Info for FastEthernet1/0/2

-----------------------------------

PAE = AUTHENTICATOR

PortControl = AUTO

ControlDirection = Both

HostMode = MULTI_HOST

ReAuthentication = Disabled

QuietPeriod = 60

ServerTimeout = 30

SuppTimeout = 30

ReAuthPeriod = 3600 (Locally configured)

ReAuthMax = 2

MaxReq = 2

TxPeriod = 30

RateLimitPeriod = 0


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
jafrazie Mon, 11/27/2006 - 18:18
User Badges:
  • Cisco Employee,

7911 ip phone?


The switchport should NOT be re-authenticating you at regular intervals. You have re-auth disabled via show command output.


What switch/image is this? Does this occur where there is no phone in the mix?

dominic.caron Tue, 11/28/2006 - 08:21
User Badges:
  • Silver, 250 points or more

C3750 Software (C3750-IPBASE-M), Version 12.2(25)SEE1


Sorry, mistake here, my lab setup is with a 7912. The reauth occur at 90sec intervals.


Will I have the same thing with 7911,7940-1,7960-1,7970...I have every phone model on my network.

Actions

This Discussion