Operation Manual ā AAA & RADIUS & HWTACACS & EAD
Quidway S3900 Series Ethernet Switches-Release 1510
Chapter 1 AAA & RADIUS & HWTACACS
Configuration
Huawei Technologies Proprietary
1-27
Operation Command Description
Create a RADIUS
scheme and enter
its view
radius scheme
radius-scheme-name
Required
By default, a RADIUS scheme
named "system" has already
been created in the system.
Set a shared key
for the RADIUS
authentication/aut
horization packets
key authentication
string
Required
Set a shared key
for the RADIUS
accounting
packets
key accounting string
Required
Caution:
You must set the share keys separately for the authentication/authorization packets
and the accounting packets if the authentication/authorization server and the
accounting server are different devices and the shared keys on the two servers are also
different.
1.4.5 Configuring the Maximum Number of Transmission Attempts of RADIUS
Requests
The communication in RADIUS is unreliable because this protocol adopts UDP packets
to carry data. Therefore, it is necessary for the switch to retransmit a RADIUS request if
it gets no response from the RADIUS server after the response timeout timer expires. If
the maximum number of transmission attempts is reached and the switch still receives
no answer, the switch considers that the request fails.
Table 1-16 Configure the maximum transmission attempts of RADIUS request
Operation Command Description
Enter system view
system-view
ā
Create a RADIUS
scheme and enter
its view
radius scheme
radius-scheme-name
Required
By default, a RADIUS scheme
named "system" has already been
created in the system.
To Next Page
Loading...
