User Manual Managed Switches
170
Reauthentication Period
Setting
Description
Factory
Default
1 to 3600 (sec)
Period, in seconds, after which a connected client
must be reauthenticated. It can only be programmed if
Reauthentication Enabled is checked.
3600
EAPOL Timeout
Setting
Description
Factory
Default
1 to 65535 (sec)
Determines the time for retransmission of Request
Identity EAPOL frames.
This has no effect for MAC-based ports.
30
Aging Period
Setting
Description
Factory
Default
10 to 1000000
(sec)
This setting applies to the following Modes defined in
Port Configuration (described below global settings):
• Single 802.1X
• Multi 802.1X
• MAC-Based Auth.
When the NAS module uses the Port Security module
to secure MAC addresses, the Port Security module
needs to check for activity on the MAC address in
question at regular intervals and free resources if no
activity is seen within a given period of time. This
parameter controls exactly this.
If reauthentication is enabled and the port is in an
802.1X-based mode, this is not so critical, since
supplicants that are no longer attached to the port will
get removed upon the next reauthentication, which will
fail. But if reauthentication is not enabled, the only way
to free resources is by aging the entries.
For ports in MAC-based Auth. mode, reauthentication
doesn't cause direct communication between the
switch and the client, so this will not detect whether the
client is still attached or not, and the only way to free
any resources is to age the entry.
300
Hold Time
Setting
Description
Factory
Default
10 to 1000000
(sec)
This setting applies to the following modes Modes
defined in Port Configuration (described below global
settings):
• Single 802.1X
• Multi 802.1X
• MAC-Based Auth.
If a client is denied access, either because the
RADIUS server denies the client access or because
10
