222
Cisco Nexus 5500 Series NX-OS Security Command Reference
OL-27883-02
Chapter R Commands
radius-server host
radius-server host
To configure RADIUS server parameters, use the radius-server host command. To revert to the default,
use the no form of this command.
radius-server host {hostname | ipv4-address | ipv6-address}
[key [0 | 7] shared-secret [pac]] [accounting]
[acct-port port-number] [auth-port port-number] [authentication] [retransmit count]
[test {idle-time time | password password | username name}]
[timeout seconds [retransmit count]]
no radius-server host {hostname | ipv4-address | ipv6-address}
[key [0 | 7] shared-secret [pac]] [accounting]
[acct-port port-number] [auth-port port-number] [authentication] [retransmit
count]
[test {idle-time time | password password | username name}]
[timeout seconds [retransmit count]]
Syntax Description hostname RADIUS server Domain Name Server (DNS) name. The name is
alphanumeric, case sensitive, and has a maximum of 256 characters.
ipv4-address RADIUS server IPv4 address in the A.B.C.D format.
ipv6-address RADIUS server IPv6 address in the X:X:X:X format.
key (Optional) Configures the RADIUS server preshared secret key.
0 (Optional) Configures a preshared key specified in clear text to authenticate
communication between the RADIUS client and server. This is the default.
7 (Optional) Configures a preshared key specified in encrypted text (indicated
by 7) to authenticate communication between the RADIUS client and server.
shared-secret Preshared key to authenticate communication between the RADIUS client
and server. The preshared key can include any printable ASCII characters
(white spaces are not allowed), is case sensitive, and has a maximum of 63
characters.
pac (Optional) Enables the generation of Protected Access Credentials on the
RADIUS Cisco ACS server for use with Cisco TrustSec.
accounting (Optional) Configures accounting.
acct-port port-number (Optional) Configures the RADIUS server port for accounting. The range is
from 0 to 65535.
auth-port port-number (Optional) Configures the RADIUS server port for authentication. The range
is from 0 to 65535.
authentication (Optional) Configures authentication.
retransmit count (Optional) Configures the number of times that the switch tries to connect to
a RADIUS server before reverting to local authentication. The range is from
1 to 5 times and the default is 1 time.
test (Optional) Configures parameters to send test packets to the RADIUS server.
idle-time time Specifies the time interval (in minutes) for monitoring the server. The range
is from 1 to 1440 minutes.
password
password Specifies a user password in the test packets. The password is alphanumeric,
case sensitive, and has a maximum of 32 characters.
To Next Page
Loading...
