Cisco Nexus 5000 Series - Allowing Users to Specify a Radius Server at Login; Configuring the Global Radius Transmission Retry Count and Timeout Interval

Cisco Nexus 5000 Series

660 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

Send feedback to nx5000-docfeedback@cisco.com

1-9

Cisco Nexus 5000 Series Switch CLI Software Configuration Guide

OL-16597-01

Chapter 1 Configuring RADIUS

Configuring RADIUS Servers

switch(config)# aaa group server radius RadServer

switch(config-radius)# server 10.10.1.1

switch(config-radius)# deadtime 30

switch(config-radius)# use-vrf management

switch(config-radius)# exit

switch(config)# show radius-server group

switch(config)# copy running-config startup-config

Allowing Users to Specify a RADIUS Server at Login

Note By default, the Nexus 5000 Series switch forwards an authentication request based on the default AAA

authentication method. You can configure the Nexus 5000 Series switch to allow the user to specify a

VRF and RADIUS server to send the authenticate request by enabling the directed-request option. If you

enable this option, the user can log in as username@hostname, where hostname is the name of a

configured RADIUS server. User specified logins are only supported for Telnet sessions.

To allow users to specify a RADIUS server at login, perform this task:

Configuring the Global RADIUS Transmission Retry Count and Timeout Interval

You can configure a global retransmission retry count and timeout interval for all RADIUS servers. By

default, a switch retries transmission to a RADIUS server only once before reverting to local

authentication. You can increase this number up to a maximum of five retries per server. The timeout

interval determines how long the Nexus 5000 Series switch waits for responses from RADIUS servers

before declaring a timeout failure.

Command Purpose

Step 1

switch# configure terminal

Enters configuration mode.

Step 2

switch(config)# switch(config)#

radius-server directed-request

Allows users to specify a RADIUS server to send the

authentication request when logging in. The default is

disabled.

Step 3

switch(config)# exit

Exits configuration mode.

Step 4

switch# show radius-server

directed-request

(Optional) Displays the directed request configuration.

Step 5

switch# copy running-config

startup-config

(Optional) Copies the running configuration to the

startup configuration.

Table of Contents

Other manuals for Cisco Nexus 5000 Series

Operation Guide44 pages

Command Reference196 pages

Configuration Guide334 pages

Troubleshooting Guide8 pages

Reference Guide12 pages

Related product manuals

Preview: Cisco Nexus 5010

Cisco Nexus 5010

AP775A - Nexus Converged Network Switch 5010

Cisco Nexus 5596

Preview: Cisco Nexus 5548P

Cisco Nexus 5548P

Preview: Cisco Nexus 5548UP

Cisco Nexus 5548UP

Preview: Cisco Nexus 5596UP

Cisco Nexus 5596UP

Preview: Cisco Nexus 5600 Series

Cisco Nexus 5600 Series

Preview: Cisco Nexus 5500 Series

Cisco Nexus 5500 Series

Preview: Cisco Nexus 7000

Cisco Nexus 7000

Preview: Cisco Nexus 3548

Cisco Nexus 3548

Preview: Cisco Nexus 9508

Cisco Nexus 9508

Cisco Nexus 3064