Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
519
Views
0
Helpful
1
Replies

Dot1x failed client reauthentication

Miles Simpson
Level 1
Level 1

‎02-03-2015 08:33 AM - edited ‎03-07-2019 10:29 PM

I have dot1x implemented on my cisco 4500e using a windows 2008 NPS server. I'm noticing that when a endpoint fails to authenticate it doesn't reattempt unless I do a shut no shut. Is there a dot1x command that you can set the default re-authentication attempt time to? Below are my dot1x global and interface configs.

 

 

Global

dot1x system-auth-control
dot1x guest-vlan supplicant

Interface

switchport mode access
 switchport voice vlan XXX
 authentication event fail action authorize vlan XXX
 authentication event server dead action authorize vlan XXX
 authentication event no-response action authorize vlan XXX
 authentication host-mode multi-domain
 authentication port-control auto
 authentication periodic
 authentication timer inactivity 60
 mab
 dot1x pae authenticator
 dot1x timeout server-timeout 50
 dot1x timeout tx-period 2
 dot1x timeout supp-timeout 5
 qos trust device cisco-phone
 spanning-tree portfast
 spanning-tree bpduguard enable

Labels:
0 Helpful
1 Reply 1

Jimmy Johansson
Level 1
Level 1

‎02-04-2015 02:50 AM

Try this on the interface:

dot1x re-authentication

dot1x timeout reauth-period <seconds>

also you can try this:

dot1x quiet-period <seconds>

 

Source: http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst4500/12-2/20ew/configuration/guide/config/dot1x.html#wp1139154

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card