3-6
RADIUS Authentication and Accounting
Configuring the Switch for RADIUS Authentication
Configuring the Switch for RADIUS
Authentication
Outline of the Steps for Configuring RADIUS
Authentication
There are three main steps to configuring RADIUS authentication:
1. Configure RADIUS authentication for controlling access through one or
more of the following
• Serial port
• Telnet
• SSH
• Port-Access (802.1x)
2. Configure the switch for accessing one or more RADIUS servers (one
primary server and up to two backup servers):
RADIUS Authentication Commands Page
aaa authentication 3-8
< console | telnet | ssh > < enable | login > radius 3-8
< local | none > 3-8
[no] radius-server host < IP-address >3-10
[auth-port < port-number >] 3-10
[acct-port < port-number >] 3-10, 3-19
[key < server-specific key-string >] 3-10
[no] radius-server key < global key-string >3-12
radius-server timeout < 1 .. 15> 3-12
radius-server retransmit < 1 .. 5 > 3-12
[no] radius-server dead-time < 1 .. 1440 > 3-13
show radius 3-23
[< host < ip-address>] 3-23
show authentication 3-25
show radius authentication 3-25
!FishSecurity.book Page 6 Thursday, October 10, 2002 9:19 PM
To Next Page
Loading...
