Security Configuration Procedures
60 7705 SAR OS System Management Guide
Configuring 802.1x RADIUS Policies
Use the following CLI commands to configure generic authentication parameters for clients
using 802.1x EAPOL. Additional parameters are configured on Ethernet ports. Refer to the
7705 SAR OS Interface Configuration Guide, “Card, Adapter Card, and Port Command
Reference”, for more information on configuring 802.1x parameters on Ethernet ports.
To configure generic parameters for 802.1x authentication, enter the following CLI syntax:
CLI Syntax: config>system>security
dot1x
radius-plcy name [create]
retry count
server server-index address ip-address
secret key [hash | hash2] [auth-port
auth-port] [acct-port acct-port] [type
server-type]
no shutdown
source-address ip-address
timeout seconds
no shutdown
The following example displays the CLI syntax usage:
Example: config>system>security>
config>system>security# dot1x
config>system>security>dot1x# radius-plcy dot1x_plcy
create
config>system>security>dot1x>radius-plcy# server 1
address 1.1.1.1 secret abc auth-port 65000
config>system>security>dot1x>radius-plcy# server 2
address 1.1.1.3 secret xyz auth-port 862
config>system>security>dot1x>radius-plcy# source-
address 1.1.1.255
The following example displays an 802.1x configuration:
*A:7705_custDoc>config>system>security>dot1x# info
----------------------------------------------
radius-plcy "dot1x_plcy" create
server 1 address 1.1.1.1 auth-port 65000 acct-
port 1813 secret "WDoQz6DJf4.0M5dlpwjHbk" hash2 type authorization
server 2 address 1.1.1.3 auth-port 862 acct-port 1813 secret
"WDoQz6DJf4.j1WcCeHZwz." hash2 type authorization
source-address 1.1.1.255
shutdown
exit
...
----------------------------------------------
A:ALU-1>config>system#
To Next Page
Loading...
