Operation Manual - Security
Quidway S6500 Series Ethernet Switches
Chapter 2 AAA and RADIUS Protocol
Configuration
Huawei Technologies Proprietary
2-23
authentication/authorization service is also used in these products and it is called local
RADIUS function, i.e. realize basic RADIUS function on the switch.
Perform the following commands in system view to create/delete local RADIUS
authentication server.
Table 2-31 Creating/deleting the local RADIUS authentication server
Operation Command
Create local RADIUS
authentication server
local-server nas-ip ip-address key string
Delete local RADIUS
authentication server
undo local-server nas-ip ip-address
By default, the IP address of local RADIUS authentication server is 127.0.0.1 and the
key is Huawei.
Caution
z When using local RADIUS authentication server function of Huawei, remember the
number of UDP port used for authentication is 1645 and that for accounting is 1646.
z The key configured by this command must be the same as that of the RADIUS
authentication/authorization packet configured by the command key
authentication in radius scheme view.
2.3.13 Configuring Source Address for RADIUS Packets Sent by NAS
Perform the following configurations in the corresponding view.
Table 2-32 Configuring source address for the RADIUS packets sent by the NAS
Operation Command
Configure the source address to be carried in the RADIUS
packets sent by the NAS (RADIUS scheme view).
nas-ip ip-address
Cancel the configured source address to be carried in the
RADIUS packets sent by the NAS (RADIUS scheme view).
undo nas-ip
Configure the source address to be carried in the RADIUS
packets sent by the NAS (System view).
radius nas-ip
ip-address
Cancel the configured source address to be carried in the
RADIUS packets sent by the NAS (System view).
undo radius
nas-ip
To Next Page
Loading...
Need help?
General
