EasyManua.ls Logo

Avaya ERS 2500 - Password Fallback

Avaya ERS 2500
62 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Avaya Inc. External Distribution
17
avaya.com
To view the various RADIUS settings, enter the following command:
ERS-Stackable(config)# radius ?
Configure RADIUS settings
accounting Configure RADIUS accounting settings
dynamic-server RADIUS Dynamic Authorization Client settings
reachability Configure RADIUS server reachability settings
use-management-ip Enable Radius use-management-ip flag.
Up to two RADIUS servers can be configured. Staring in release 5.4 for the ERS4500 and 4.3 for
the ERS2500, the radius reachability setting allows either ICMP packets or dummy RADIUS
requests to determine if the primary RADIUS server is reachable. By default, ICMP is enabled. If
you wish to use dummy RADIUS requests, the switch will generate a regular RADIUS requests
periodically with the username avaya and a blank password. Hence, it is recommended that you
setup an account with the user name avaya and a blank password on your RADIUS server to
avoid invalid RADIUS user login messages. The following command is used to configure the
reachability setting:
ERS-Stackable(config)# radius reachability ?
use-icmp Enable RADIUS server reachability using ICMP
use-radius Enable RADIUS server reachability using RADIUS requests
For the ERS 4500, starting in release 5.4, ERS 5000 in release 6.2, or for the ERS
2500, starting in release 4.3, if using the use-radius setting when configuring the radius
reachability parameter, the switch will periodically send RADIUS requests using a user
name of avaya with a blank password. Hence, your RADIUS server must support blank
passwords. This is not the case with Avaya‟s Ignition Server which does not allow blank
passwords. If using Ignition Server, use the default setting of use-icmp.
Please note the radius reachability parameter is not available in the latest release
(6.1.2) of the ERS5000 series and will be added in release 6.2. By default, the switch
will periodically send RADIUS requests using a user name of nortel with a blank
password to determine RADIUS server reachability. Again, Avaya‟s Ignition Server does
not allow blank passwords, thus, RADIUS requests from an ERS5000 will be rejected.
5.1 Password Fallback
The RADIUS password fallback feature allows the user to log on to the switch or stack by using
the local password if the RADIUS server is unavailable or unreachable for authentication.
RADIUS password fallback is disabled by default.
To enable RADIUS password fallback, please enter the following command
ERS-Stackable(config)# radius-server password fallback

Table of Contents

Related product manuals