3-16
RADIUS Authentication and Accounting
Configuring RADIUS Accounting
Configuring RADIUS Accounting
Note This section assumes you have already:
Configured RADIUS authentication on the switch for one or more
access methods
Configured one or more RADIUS servers to support the switch
If you have not already done so, refer to “General RADIUS Setup Procedure”
on page 3-5 before continuing here.
RADIUS accounting collects data about user activity and system events and
sends it to a RADIUS server when specified events occur on the switch, such
as a logoff or a reboot. The Switch 2650 and 6108 support three types of
accounting services:
Network accounting: Provides records containing the information
listed below on clients directly connected to the switch and operating
under Port-Based Access Control (802.1x):
RADIUS Accounting Commands Page
[no] radius-server host < ip-address >3-19
[ acct-port < port-number >] 3-19
[key < key-string >] 3-19
[no] aaa accounting < exec | network | system >
< start-stop | stop-only> radius
3-21
[no] aaa accounting update
periodic < 1 .. 525600 > (in minutes)
3-22
[no] aaa accounting suppress null-username 3-22
show accounting 3-26
show accounting sessions 3-27
show radius accounting 3-26
• Acct-Session-Id
• Acct-Status-Type
• Acct-Terminate-Cause
• Acct-Authentic
• Acct-Delay-Time
• Acct-Input-Packets
• Acct-Output-Packets
• Acct-Input-Octets
• Nas-Port
• Acct-Output-Octets
• Acct-Session-Time
• Username
• Service-Type
• NAS-IP-Address
• NAS-Identifier
• Called-Station-Id
!FishSecurity.book Page 16 Thursday, October 10, 2002 9:19 PM
To Next Page
Loading...
