The authentication max-reauth-req command sets the maximum number of re-authentication attempts for users in a critical VLAN.
The undo authentication max-reauth-req command restores the default setting.
By default, the maximum number of re-authentication attempts is 20 for users in a critical VLAN.
In the system view:
authentication max-reauth-req times interface { interface-type interface-number1 [ to interface-number2 ] } &<1-10>
undo authentication max-reauth-req [ times ] interface { interface-type interface-number1 [ to interface-number2 ] } &<1-10>
In the interface view:
authentication max-reauth-req times
undo authentication max-reauth-req [ times ]
Parameter |
Description |
Value |
|---|---|---|
| times | Specifies the maximum number of re-authentication attempts. |
The value is an integer that ranges from 1 to 20. The default value is 20. |
interface { interface-type interface-number1 [ to interface-number2 ] } |
Specifies the interface type and number.
|
- |
System view, Ethernet interface view, GE interface view, MultiGE interface view, XGE interface view, 25GE interface view, 40GE interface view, 100GE interface view, Eth-Trunk interface view, Port group view
When the authentication server maintained by the device turns to the Up state, the device triggers re-authentication for users already added to the critical VLAN. If the authentication is successful, the users exit the critical VLAN. However, if the re-authentication fails due to reasons such as the fault of the access user's client, the repeated re-authentication degrades the device performance. After the maximum number of re-authentication attempts is set for users in the critical VLAN, the device forces the user to exit the critical VLAN if the user fails the authentication the specified number of times.