Buy or Renew
Buy or Renew
NEW: Try the Beta AI Summary feature on posts in the Routing and SD-WAN forum. Click to go to the forum.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
735
Views
0
Helpful
1
Replies

wds radius re-authentication

whanson
Level 7
Level 7

‎10-26-2006 10:57 AM - edited ‎07-03-2021 01:08 PM

Have a very simple AP setup with WDS and external radius server. Users constantly complain that after about an hour they have to re-authenticate. Any ideas?

thx

Labels:
0 Helpful
1 Reply 1

Rob Huffman
Hall of Fame
Hall of Fame

‎10-27-2006 06:01 AM

Hi Bill,

There must be a reauth period parameter set on either the AP or Radius server (perhaps group or client settings). Here is what to look for on the AP;

dot1x reauth-period

Use the dot1x reauth-period configuration interface command to configure the dot1x client- reauthentication period. The no form of the command disables reauthentication.

[no] dot1x reauth-period {1-65555 | server}

Syntax Description 1-65555

Specifies a number of seconds (1 to 65555)

server Specifies reauthentication period configured on the authentication server. If you use this option, configure your authentication server with RADIUS attribute 27, Session-Timeout. This attribute sets the maximum number of seconds of service to be provided to a client device before termination of the session. The server sends this attribute to the access point when a client performs EAP authentication.

This example shows how to configure a 60-minute dot1x client-reauthentication period:

AP(config-if)# dot1x reauth-period 3600

http://www.cisco.com/en/US/products/hw/wireless/ps4570/products_command_reference_chapter09186a0080341ee7.html#wp2454059

Hope this helps!

Rob

Please remember to rate helpful posts.....

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card