Configuring EAP on a port
Configure EAP on a specific port when you do not want to apply EAP to all of the switch ports.
Procedure
-
Enter GigabitEthernet Interface
Configuration mode:
enable
configure terminal
interface GigabitEthernet {slot/port[/sub-port][-slot/port[/sub-port]][,...]}
Note
If the platform supports channelization and the port is channelized, you must also specify the sub-port in the format slot/port/sub-port.
Example
Configure the maximum EAP requests sent to the supplicant before timing out the session:
Switch:1>enable Switch:1#configure terminal Switch:1(config)#interface GigabitEthernet 1/2 Switch:1(config-if)#eapol max-request 10 Switch:1(config-if)#eapol port 1/2 quiet-interval 500
Variable Definitions
The following table defines parameters for the eapol port command.
|
Variable |
Value |
|---|---|
|
{slot/port[/sub-port] [-slot/port[/sub-port]] [,...]} |
Specifies the port or list of ports used by EAP. Identifies the slot and port in one of the following formats: a single slot and port (slot/port), a range of slots and ports (slot/port-slot/port), or a series of slots and ports (slot/port,slot/port,slot/port). If the platform supports channelization and the port is channelized, you must also specify the sub-port in the format slot/port/sub-port. |
|
max-request <1-10> |
Specifies the maximum EAP requests sent to the supplicant before timing out the session. The default is 2. |
|
quiet-interval <1-65535> |
Specifies the time interval in seconds between the authentication failure and start of a new authentication. The default is 60. |
|
re-authentication enable |
Enables reauthentication of an existing supplicant at a specified time interval. |
|
re-authentication-period <60-65535> |
Specifies the time interval in seconds between successive reauthentications. The default is 3600 (1 hour). |
|
status {authorized|auto} |
Specifies the desired EAP authentication status for this port. |