Configuring port-based EAPOL using EDM

Use the following procedure to configure EAPOL security parameters for an individual port or multiple ports.

Prerequisites

Procedure steps


Step Action

1

In the Device Physical View, select a port.

2

Right-click the selected Port.

3

In the shortcut menu, click Edit.

The Port tab appears.

4

In the work area, click the EAPOL tab.

5

Configure the parameters as required.

6

In the toolbar, click Apply.


--End--

Variable definitions

The following table describes the fields of port-based EAPOL tab.

Variable Value
PortProtocolVersion Specifies the EAP Protocol version running on this port.
PortCapabilities Specifies the PAE functionality implemented on this port. Always returns dot1xPaePortAuthCapable(0).
PortInitialize Initializes the port EAPOL state.
Attention

Set this attribute to True to initialize the port EAPOL state.

PortReauthenticateNow Reauthenticates the client.
Attention

Set this attribute to True to reauthenticate the client.

PaeState Specifies the current authenticator PAE state machine state value.
BackendAuthState Specifies the current state of the Backend Authentication state machine.
AdminControlledDirections Specifies the current value of the administrative controlled directions parameter for the port. Available options are
  • both
  • in
Default is in.
OperControlledDirections Specifies the current value of the operational controlled directions parameter for the port.
AuthControlledPortStatus Specifies the current value of the controlled port status parameter for the port.
AuthControlledPortControl Specifies the current value of the controlled port control parameter for the port. Available options are:
  • forcedUnauthorized
  • auto
  • forcedAuthorized
Default is forcedAuthorized.
QuietPeriod Specifies the current value of the time interval between authentication failure and new authentication start. Value ranges between 0 and 65535 seconds. Default value is 60 seconds.
TransmitPeriod Specifies the time period to wait for a response from the supplicant for EAP requests/Identity packets. Value ranges between 0 and 65535 seconds. Default value is 30 seconds.
Supplicant Timeout Specifies the time period to wait for a response from the supplicant for all EAP packets except EAP Request/Identity. The default is 30 seconds. The time interval can be between 1 and 65535 seconds.
ServerTimeout Specifies the time period to wait for a response from the RADIUS server. The default is 30 seconds. The time interval can be between 1 and 65535 seconds.
MaximumRequests Specifies the number of allowed retries while sending packets to the supplicant. The default is 2 seconds. The number of retries can be between 1 and 10.
ReAuthenticationPeriod Specifies the time interval between successive reauthentications. The default is 3600 seconds. The time interval can be between 1 and 604800 seconds.
ReAuthenticationEnabled Specifies if reauthentication is required.
Attention

Set this attribute to True to reauthenticate an existing supplicant at the time interval specified in the ReauthenticationPeriod field.

KeyTxEnabled Specifies the value of the KeyTranmissionEnabled constant currently in use by the Authenticator PAE state machine. This always returns a value of False because key transmission is irrelevant.
LastEapolFrameVersion Specifies the protocol version number carried in the most recently received EAPOL frame.
LastEapolFrameSource Specifies the source MAC address carried in the most recently received EAPOL frame.