1-13Figure 1-10 802.1x re-authenticationPCInternetPC PCRADIUSServerSwitch802.1x re-authentication can be enabled in one of the following two ways:z The RADIUS server triggers the switch to perform 802.1x re-authentication of users. The RADIUSserver sends the switch an Access-Accept packet with the Termination-Action attribute field of 1.Upon receiving the packet, the switch re-authenticates users periodically.z You enable 802.1x re-authentication on the switch. With 802.1x re-authentication enabled, theswitch re-authenticates users periodically.802.1x re-authentication will fail if a CAMS server is used and configured to perform authentication butnot accounting. This is because a CAMS server establishes a user session after it begins to performaccounting. Therefore, to enable 802.1x re-authentication, do not configure the accounting nonecommand in the domain. This restriction does not apply to other types of servers.Introduction to 802.1x Configuration802.1x provides a solution for authenticating users. To implement this solution, you need to execute802.1x-related commands. You also need to configure AAA schemes on switches and specify theauthentication scheme (RADIUS or local authentication scheme).Figure 1-11 802.1x configuration