aaa authentication port-access dot1x authenticator eapol-timeout

Syntax

aaa authentication port-access dot1x authenticator eapol-timeout <EAPOL-TIMEOUT>

no aaa authentication port-access dot1x authenticator eapol-timeout

Description

Configure the period the switch waits for a response from a client before retransmitting an EAPOL PDU.

If the value is 0, the time period is calculated as per RFC 2988.

NOTE:

As per RFC 2988 2.1: Before Round-Trip Time (RTT) measurement, set Retransmission Timeout (RTO) to 3 seconds for initial retransmission and then double the RTO to provide back off as per section 5.5. Limit the maximum RTO (RTOmax) to 20 seconds as per section 4.3 of RFC 3748.

The no form of the command resets the timeout period to the default.

Command context

config-if

Parameters

<EAPOL-TIMEOUT>

Specifies the EAPOL timeout period (in seconds). Range: 1 to 65535.

Authority

Administrators or local user group members with execution rights for this command.

Examples

Configuring EAPOL timeout on a port:

switch(config-if)# aaa authentication port-access dot1x authenticator eapol-timeout 120

Resetting the EAPOL timeout to the default value:

switch(config-if)# no aaa authentication port-access dot1x authenticator eapol-timeout