Configuring ISG as a RADIUS Proxy
How to Configure ISG as a RADIUS Proxy
11
Verifying ISG RADIUS Proxy Configuration
Use one or more of the following commands to verify ISG RADIUS proxy configuration. The commands
may be entered in any order.
SUMMARY STEPS
1. show radius-proxy client ip-address [vrf vrf-id]
2. show radius-proxy session {id id-number | ip ip-address}
3. show subscriber session [identifier {authen-status {authenticated | unauthenticated} |
authenticated-domain domain-name | authenticated-username username | dnis dnis | media type
| nas-port identifier | protocol type | source-ip-address ip-address subnet-mask | timer timer-name
| tunnel-name name | unauthenticated-domain domain-name | unauthenticated-username
username} | uid session-identifier | username username] [detailed]
Step 4
aaa authorization radius-proxy {default |
list-name} method1 [method2 [method3...]]
Example:
Router(config)# aaa authorization radius-proxy
RP group radius
Configures AAA authorization methods for ISG RADIUS
proxy subscribers.
• A method may be either of the following:
–
group group-name—Uses a subset of RADIUS
servers for authorization as defined by the server
group
group-name command.
–
group radius—Uses the list of all RADIUS servers
for authorization as defined by the aaa group
server radius command.
Step 5
policy-map type control policy-map-name
Example:
Router(config)# policy-map type control
proxyrule
Creates or modifies a control policy map, which defines an
ISG control policy and enters control policy-map
configuration mode.
Step 6
class type control {control-class-name |
always} event session-start
Example:
Router(config-control-policymap)# class type
control always event session-start
Specifies a control class for which actions may be
configured and enters control policy-map class
configuration mode.
Step 7
action-number proxy [aaa list {default |
list-name}
Example:
Router(config-control-policymap-class-control)#
1 proxy aaa list RP
Sends RADIUS packets to the specified server.
• Use this command to configure ISG to forward
RADIUS proxy packets to the server specified by the
aaa authorization radius-proxy command in Step 4.
Step 8
end
Example:
Router(config)# end
Exits the current configuration mode and returns to
privileged EXEC mode.
Command or Action Purpose
To Next Page
Loading...
Need help?
General