Operation Manual - Security
Quidway S3000-EI Series Ethernet Switches
Chapter 2 AAA and RADIUS Protocol
Configuration
Huawei Technologies Proprietary
2-19
2.3.14 Se
ent to RADIUS server.
Perform the following configurations in RADIUS scheme view.
tting the Unit of Data Flow that Transmitted to RADIUS Server
The following command defines the unit of the data flow s
Table 2-25 Setting the unit of data flow transmitted to RADIUS server
Operation Command
Set the unit of data flow
transmitted to RADIUS server
kilo-byte | mega-byte } packet { giga-packet |
data-flow-format data { byte | giga-byte |
kilo-packet | mega-packet | one-packet }
Restore the unit to the default
undo data-flow-format
setting
B
2.3.15 Con cation Server
RADIUS service, which adopts authentication/authorization/accounting servers to
anage users, is widely used in Quidway series switches. Besides, local
Perform the following commands in system view to create/delete local RADIUS
y default, the default data unit is byte and the default data packet unit is one packet.
figuring Local RADIUS Authenti
m
authentication/authorization service is also used in these products and it is called local
RADIUS authentication server function, i.e. realize basic RADIUS function on the
switch.
authentication server.
Table 2-26 Creating/Deleting local RADIUS authentication server
Operation Command
Create local RADIUS authentication
server
local-server nas-ip ip-address key
password
Delete local RADIUS authentication
server
undo local-server nas-ip ip-address
By default, the IP address of local RADIUS authentication serve
r is 127.0.0.1 and the
ation server function, note that,
d that for accounting is
1646.
ver command must be the same as that of
the RADIUS authentication/authorization packet co he command key
authentication in RADIUS scheme view.
password is Huawei.
When using local RADIUS authentic
1) The number of UDP port used for authentication is 1645 an
2) The password configured by local-ser
nfigured by t