Command Manual - Security
Quidway S3500 Series Ethernet Switches Chapter 3 AAA & RADIUS Protocol Configuration Commands
Huawei Technologies Proprietary
3-29
After creating a RADIUS scheme, you are supposed to set IP addresses and UDP port
numbers for the RADIUS servers, including primary/second
authentication/authorization servers and accounting servers. In real networking
environments, the above parameters shall be set according to the specific
requirements. However, at least you have to set one authentication/authorization
server and an accounting server. Besides, ensure that the RADIUS service port
settings on the Ethernet switch is consistent with the port settings on the RADIUS
server.
For the related commands, see key, radius scheme, state.
Example
# Set the IP address of the primary accounting server of RADIUS scheme, “huawei”, to
10.110.1.2 and the UDP port 1813 to provide RADIUS accounting service.
[Quidway-radius-huawei] primary accounting 10.110.1.2 1813
3.2.12 primary authentication
Syntax
primary authentication ip-address [ port-number ]
undo primary authentication
View
RADIUS scheme view
Parameter
ip-address: IP address, in dotted decimal format.
port-number: Specifies UDP port number. ranging from 1 to 65535.
Description
Using primary authentication command, you can configure the IP address and port
number for the primary RADIUS authentication/authorization. Using undo primary
authentication command, you can restore the default IP address and port number of
the primary RADIUS authentication/authorization.
By default, as for the newly created RADIUS scheme, the IP address of the primary
authentication server is 0.0.0.0, and the UDP port number of this server is 1812; as for
the "system" RADIUS scheme created by the system, the IP address of the primary
authentication server is 127.0.0.1, and the UDP port number is 1645.
After creating a RADIUS scheme, you are supposed to set IP addresses and UDP port
numbers for the RADIUS servers, including primary/second
authentication/authorization servers and accounting servers. In real networking
environments, the above parameters shall be set according to the specific
To Next Page
Loading...
Need help?
General
