(Optional) Configuring the Handshake Function for 802.1x Online Users
Context
You can configure the handshake function for online users to ensure that the users are online in real time. The device sends a handshake request packet at intervals to online users who pass the authentication. If the user does not respond to the handshake packet after the maximum number of retransmission times, the device disconnects the user.
If the 802.1x client cannot exchange the handshake packet with the device, the device does not receive any handshake response packet within the handshake period. You must disable the handshake function for online users to prevent the device from incorrectly disconnecting the users.
Procedure
- Run system-view
The system view is displayed.
- Run dot1x handshake
The handshake function is enabled for 802.1x online users.
By default, the handshake function is disabled for 802.1x online users.
- (Optional) Run dot1x retry max-retry-value
The maximum number of times an authentication request can be sent to an 802.1x user is set.
By default, the device sends an authentication request to an 802.1x user twice.
- (Optional) Run dot1x timer handshake-period handshake-period
The 802.1x timers are configured.
The interval for sending handshake packets is set.
By default, the interval for sending handshake packets is 60 seconds.
- Run commit
The configuration is committed.