Configuring 802.1X Parameters 3678 To specify the number of seconds the WX switch waits beforeretransmitting an Extensible Authentication Protocol over LAN (EAPoL)packet, specify the timeout value (1 to 65,535 seconds) in the RetransmitTimeout box. The default is 5 seconds.9 To specify the number of seconds before the WX switch times out anauthentication session with a supplicant, specify the timeout value (1 to65,535 seconds) in the Supplicant Timeout box. The default is 30seconds.10 To specify the number of seconds before the WX switch times out arequest to an authentication server, specify the timeout value (1 to65,535 seconds) in the Authentication Server Timeout box. The default is30 seconds.11 To set the maximum number of times the WX switch retransmits an EAPrequest to the supplicant before timing out the authentication session,specify the value (0 to 10) in the Maximum Requests box. The default is2 attempts.To support SSIDs that have both 802.1X and static WEP clients, MSSsends a maximum of two ID requests, even if this parameter is set to ahigher value. Setting the parameter to a higher value does affect all othertypes of EAP messages.12 To enable encryption key information to be sent to the client afterauthentication in EAPoL-Key PDUs, select Key Transmit.The WX switch sends EAPoL key messages after successfullyauthenticating the client and receiving authorization attributes for theclient. If the client is using dynamic Wired-Equivalent Privacy protocol(WEP), the EAPoL key messages are sent immediately after authorization.To disable this option, clear Key Transmit. By default, this option isenabled.13 To enable reauthentication of supplicants, select Reauthentication.To disable reauthentication, clear Reauthentication. By default,supplicant reauthentication is enabled.14 To specify the number of reauthentication requests the WX switchattempts before the supplicant becomes unauthorized, specify the value(1 to 10) in the Reauthentication Attempts box. The default is 2 attempts.If the number of reauthentications for a wired authentication client isgreater than the maximum number of reauthentications allowed, MSSsends an EAP failure packet to the client and removes the client from the
