To Next Page

To Previous Page

6-17

RADIUS Authentication, Authorization, and Accounting

Configuring the Switch for RADIUS Authentication

Figure 6-5. Sample Configuration for RADIUS Server After Changing the Key and Adding Another Server

To change the order in which the switch accesses RADIUS servers, refer to

“Changing RADIUS-Server Access Order” on page 6-67.

4. Configure the Switch’s Global RADIUS Parameters

You can configure the switch for the following global RADIUS parameters:

■ Number of login attempts: In a given session, specifies how many

tries at entering the correct username and password pair are allowed

before access is denied and the session terminated. (This is a general

aaa authentication parameter and is not specific to RADIUS.)

■ Global server key: The server key the switch will use for contacts

with all RADIUS servers for which there is not a server-specific key

configured by radius-server host < ip-address > key < key-string >. This

key is optional if you configure a server-specific key for each RADIUS

server entered in the switch. (Refer to “3. Configure the Switch To

Access a RADIUS Server” on page 6-14.)

■ Server timeout: Defines the time period in seconds for authentica-

tion attempts. If the timeout period expires before a response is

received, the attempt fails.

■ Server dead time: Specifies the time in minutes during which the

switch avoids requesting authentication from a server that has not

responded to previous requests.

HP Switch(config)# radius-server host 10.33.18.127 key source0127

HP Switch(config)# radius-server host 10.33.18.119 key source0119

HP Switch(config)# show radius

Status and Counters - General RADIUS Information

Deadtime(min) : 0

Timeout(secs) : 5

Retransmit Attempts : 3

Global Encryption Key :myg10balkey

Dynamic Authorization UDP Port : 3799

Auth Acct DM/ Time

Server IP Addr Port Port CoA Window Encryption Key OOBM

--------------- ---- ---- --- ------ -------------------------------- -----

10.33.18.127 1812 1813 No 10 source0127 No

10.33.18.119 1812 1813 No 10 source0119 No

Changes

the key for

the existing

server to

“source012

7” (step 1,

above).

Adds the

new RADIUS

server with

its required

“source0119

” key.

Questions and Answers:

Need help?

Do you have a question about the HP E3800 Series and is the answer not in the manual?

HP E3800 Series Specifications

General

Model	HP E3800 Series
Layer	Layer 3
Uplink Ports	4 x SFP+ ports
Stacking	Yes
Power over Ethernet (PoE)	Available on some models
Management	Web, CLI, SNMP
Power Supply	Redundant (optional)
Operating Temperature	0°C to 45°C
Dimensions (W x D x H)	440 x 424 x 44 mm
Operating Humidity	10% to 90% non-condensing