Configuring CoA on the Switch
Beginning in privileged EXEC mode, follow these steps to configure CoA on a switch. This procedure is
required.
SUMMARY STEPS
1.
configure terminal
2.
aaa new-model
3.
aaa server radius dynamic-author
4.
client {ip-address | name} [vrf vrfname] [server-key string]
5.
server-key [0 | 7] string
6.
port port-number
7.
auth-type {any | all | session-key}
8.
ignore session-key
9.
ignore server-key
10.
authentication command bounce-port ignore
11.
authentication command disable-port ignore
12.
end
DETAILED STEPS
PurposeCommand or Action
Enters the global configuration mode.configure terminal
Example:
Switch# configure terminal
Step 1
Enables AAA.aaa new-model
Example:
Switch(config)# aaa new-model
Step 2
Configures the switch as an authentication, authorization, and
accounting (AAA) server to facilitate interaction with an external
policy server.
aaa server radius dynamic-author
Example:
Switch(config)# aaa server radius
Step 3
dynamic-author
Enters dynamic authorization local server configuration mode and
specifies a RADIUS client from which a device will accept CoA and
disconnect requests.
client {ip-address | name} [vrf vrfname]
[server-key string]
Step 4
Catalyst 2960-XR Switch Security Configuration Guide, Cisco IOS Release 15.0(2)EX1
OL-29434-01 77
Configuring RADIUS
Configuring CoA on the Switch
To Next Page
Loading...
