AAA Configuration Examples 263
AAA Configuration
Examples
Remote RADIUS
Authentication of
Telnet/SSH Users
n
The configuration procedure for remote authentication of SSH users by RADIUS
server is similar to that for Telnet users. The following text only takes Telnet users
as example to describe the configuration procedure for remote authentication.
Network requirements
In the network environment shown in Figure 81, you are required to configure the
switch so that the Telnet users logging into the switch are authenticated by the
RADIUS server.
■ A RADIUS authentication server with IP address 10.110.91.164 is connected to
the switch.
■ On the switch, set the shared key it uses to exchange messages with the
authentication RADIUS server to "aabbcc".
■ A CAMS server is used as the RADIUS server. You can select extended as the
server-type in a RADIUS scheme.
Tab le 203 Display and maintain RADIUS protocol information
Operation Command Remarks
Display RADIUS message
statistics about local RADIUS
authentication server
display local-server
statistics
You can execute the display
command in any view.
Display configuration
information about one
specific or all RADIUS schemes
display radius scheme [
radius-scheme-name ]
Display RADIUS message
statistics
display radius statistics
Display buffered
non-response
stop-accounting requests
display
stop-accounting-buffer {
radius-scheme
radius-scheme-name |
session-id session-id |
time-range start-time
stop-time | user-name
user-name }
Delete buffered non-response
stop-accounting requests
reset
stop-accounting-buffer {
radius-scheme
radius-scheme-name |
session-id session-id |
time-range start-time
stop-time | user-name
user-name }
You can execute the reset
command in user view.
Clear RADIUS message
statistics
reset radius statistics
To Next Page
Loading...
