10-17-2016 03:03 AM
I would like to ask some clarificiations/confirmations about the Reauthentication Interval setting inside the MAC authentication profile.
-Does it well correct that we need to activate Reauthentication on the screenshot below to have Max Authentication failures and Reauthentication Interval starting to take effect?
-Reauthentication Interval, does it well mean that after first attempt, the client needs to wait 86400 to try to authenticate again?
-If Max Authentication failures is set to 0, does it mean that the client is blacklisted if first attempt is rejected? Does this Max Authentication failures number that will trigger the Reauthentication Interval to count down for a specific client?
Thanks in advance for your help,
10-17-2016 06:18 AM
Reauthentication needs to be enabled to set the reauthentication interval, yes. You would then set the reauthentication interval, as well. The reauthentication parameter is not related to max authentication failures.
The reauthentication interval means that after 86400 seconds in this example the client will be forced to reauthenticate. This is useful if you make changes to the database that allows clients access and you want it checked every 86400 seconds to ensure the clients still has access.
Max Authentication failures at zero means that the client is blacklisted as soon as it fails authentication IF blacklisting is enabled at the Virtual AP level.
Blacklisting has is not related to the reauthentication interval.
I hope this helps.
Aruba Customer Engineering
Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base