AAA and RADIUS Protocol Configuration 211
By default, as for the newly created RADIUS scheme, the IP address of the primary
authentication server is 0.0.0.0, and the UDP port number of this server is 1812; as
for the "system" RADIUS scheme created by the system, the IP address of the
primary authentication server is 127.0.0.1, and the UDP port number is 1645.
The authorization information from the RADIUS server is sent to RADIUS clients in
authentication response packets, so you do not need to specify a separate
authorization server.
In real networking environments, you may specify two RADIUS servers as primary
and secondary authentication/authorization servers respectively, or specify one
server to function as both.
The RADIUS service port settings on the Switch 4500 should be consistent with
the port settings on the RADIUS server. Normally, the authentication/authorization
service port is 1812.
Configuring RADIUS
Accounting Servers and
the Related Attributes
Configuring RADIUS Accounting Servers
You can use the following commands to configure the IP address and port number
for RADIUS accounting servers.
Perform the following configurations in RADIUS Scheme View.
Tab le 222 Configuring RADIUS Accounting Servers
By default, as for the newly created RADIUS scheme, the IP address of the primary
accounting server is 0.0.0.0, and the UDP port number of this server is 1813; as
for the "system" RADIUS scheme created by the system, the IP address of the
primary accounting server is 127.0.0.1, and the UDP port number is 1646.
In real networking environments, you can specify two RADIUS servers as the
primary and the secondary accounting servers respectively; or specify one server to
function as both.
To guarantee the normal interaction between NAS and RADIUS server, you are
supposed to guarantee the normal routes between RADIUS server and NAS before
setting the IP address and UDP port of the RADIUS server. In addition, because
Set IP address and port number of secondary
RADIUS authentication/authorization server.
secondary authentication
ip_address [ port_number ]
Restore IP address and port number of second
RADIUS authentication/authorization server to
the default values.
undo secondary authentication
Operation Command
Operation Command
Set IP address and port number of primary RADIUS
accounting server.
primary accounting
ip_address [ port_number ]
Restore IP address and port number of primary RADIUS
accounting server to the default values.
undo primary accounting
Set IP address and port number of second RADIUS
accounting server.
secondary accounting
ip_address [ port_number ]
Restore IP address and port number of second RADIUS
accounting server to the default values.
undo secondary accounting
To Next Page
Loading...
Need help?
General