176
Configuring Switch-Based Authentication
How to Configure Switch-Based Authentication
Configuring RADIUS Authorization for User Privileged Access and Network Services
Starting RADIUS Accounting
Configuring Settings for All RADIUS Servers
Command Purpose
1. configure terminal Enters global configuration mode.
2. aaa authorization network radius Configures the switch for user RADIUS authorization for all
network-related service requests.
3. aaa authorization exec radius Configures the switch for user RADIUS authorization if the user has
privileged EXEC access.
The exec keyword might return user profile information (such as
autocommand information).
4. end Returns to privileged EXEC mode.
Command Purpose
1. configure terminal Enters global configuration mode.
2. aaa accounting network start-stop
radius
Enables RADIUS accounting for all network-related service requests.
3. aaa accounting exec start-stop radius Enables RADIUS accounting to send a start-record accounting notice at
the beginning of a privileged EXEC process and a stop-record at the
end.
4. end Returns to privileged EXEC mode.
Command Purpose
1. configure terminal Enters global configuration mode.
2. radius-server key string Specifies the shared secret text string used between the switch and all
RADIUS servers.
Note: The key is a text string that must match the encryption key used on
the RADIUS server. Leading spaces are ignored, but spaces within and at
the end of the key are used. If you use spaces in your key, do not enclose
the key in quotation marks unless the quotation marks are part of the key.
3. radius-server retransmit retries Specifies the number of times the switch sends each RADIUS request to
the server before giving up. The default is 3; the range 1 to 1000.
4. radius-server timeout seconds Specifies the number of seconds a switch waits for a reply to a RADIUS
request before resending the request. The default is 5 seconds; the range
is 1 to 1000.
To Next Page
Loading...
Need help?
General