< Home

Configuring the 802.1X Authentication Timeout Timer After Which MAC Address Authentication Is Performed

Context

You can enable MAC address bypass authentication for terminals (such as printers) on which the 802.1X client software cannot be installed or used.

After MAC address bypass authentication is configured, the device performs 802.1X authentication first and starts the timer configured using the dot1x timer mac-bypass-delay delay-time-value command. If 802.1X authentication is not successful before the timer expires, the device performs MAC address authentication on users. You can run the dot1x retry max-retry-value command to set the number of times an authentication request is retransmitted to an 802.1X user. The retransmission interval is the integer part of the value calculated using the following formula: delay-time-value/(max-retry-value + 1)

Figure 1 MAC address bypass authentication process

Procedure

  1. Run system-view

    The system view is displayed.

  2. Run dot1x timer mac-bypass-delay delay-time-value

    The 802.1X authentication timeout timer after which MAC address authentication is performed is configured.

    By default, the device performs MAC address authentication if 802.1X authentication is not successful within 30 seconds.

Parent Topic: Configuring Extended Functions Related to 802.1X Authentication
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >