4. Select the name to configure server parameters. Enter the parameters as described in Table 41. Select the
Mode check box to activate the authentication server.
5. Click Apply.
The configuration does not take effect until you perform this step.
Using the CLI
(host)(config) #aaa authentication-server radius <name>
host <ipaddr>
key <key>
enable
Parameter Description
Host IP address or fully qualified domain name (FQDN) of the authentication server.
The maximum supported FQDN length is 63 characters.
Default: N/A
Key Shared secret between the switch and the authentication server. The
maximum length is 128 characters.
Default: N/A
Auth Port Authentication port of this server.
Default: 1812
Acct Port Accounting port of this server.
Default: 1813
Radsec Port Radsec port number of this server.
Range: 1-65535
Default: 2083
CPPM credentials Allows the switch to use configurable username and password instead of a
support password.
Retransmits Maximum number of retries sent to the server by the switch before the server
is marked as down.
Default: 3
Timeout Maximum time, in seconds, that the switch waits before timing out the request
and resending it.
Default: 5 seconds
NAS ID Network Access Server (NAS) identifier to use in RADIUS packets.
NAS IP The NAS IP address to be sent in RADIUS packets from that server.
NOTE: If you define a local NAS IP using the Configuration > Security >
Authentication > Servers page and also define a global NAS IP using the
Configuration > Security > Authentication > Advanced page, the global
NAS IP address takes precedence.
Enable IPv6 Enable or disable IPv6 for this server.
Default: Disabled
NAS IPv6 The NAS IPv6 address to be sent in RADIUS packets.
Table 41: RADIUS Server Configuration Parameters
AOS-W 6.5.3.x | User Guide Authentication Servers | 180
To Next Page
Loading...