Operation Manual - Security
Quidway S3500 Series Ethernet Switches Chapter 3 AAA and RADIUS Protocol Configuration
Huawei Technologies Proprietary
3-20
3.3.16 Setting the Unit of Data Flow that Transmitted to RADIUS Server
The following command defines the unit of the data flow sent to RADIUS server.
Perform the following configurations in RADIUS scheme view.
Table 3-25 Setting the unit of data flow transmitted to RADIUS server
Operation Command
Set the unit of data flow
transmitted to RADIUS server
data-flow-format data { byte | giga-byte |
kilo-byte | mega-byte } packet { giga-packet |
kilo-packet | mega-packet | one-packet }
Restore the unit to the default
setting
undo data-flow-format
By default, the default data unit is byte and the default data packet unit is one packet.
3.3.17 Configuring Local RADIUS Authentication Server
RADIUS service, which adopts authentication/authorization/accounting servers to
manage users, is widely used in Quidway series switches. Besides, local
authentication/authorization service is also used in these products and it is called local
RADIUS authentication server function, i.e. realize basic RADIUS function on the
switch.
Perform the following commands in system view to create/delete local RADIUS
authentication server.
Table 3-26 Creating/Deleting local RADIUS authentication server
Operation Command
Create local RADIUS authentication
server
local-server nas-ip ip-address key
password
Delete local RADIUS authentication
server
undo local-server nas-ip ip-address
By default, the IP address of local RADIUS authentication server is 127.0.0.1 and the
password is Huawei.
When using local RADIUS authentication server function, note that,
1) The number of UDP port used for authentication is 1645 and that for accounting is
1646.
2) The password configured by local-server command must be the same as that of
the RADIUS authentication/authorization packet configured by the command key
authentication in RADIUS scheme view.
To Next Page
Loading...
Need help?
General
