Command Manual – Security
Quidway S8500 Series Routing Switches
Chapter 2 AAA and RADIUS/HWTACACS Protocol
Configuration Commands
Huawei Technologies Proprietary
2-32
Parameter
nas-ip ip-address: Sets Nas-IP address of access server. ip-address is expressed in
the format of dotted decimal. By default, there is a local server with the NAS-IP address
of 127.0.0.1.
key password: Sets password of logon user. password is a character string containing
up to 16 characters.
Description
Use the local-server command to configure the parameters of local RADIUS server.
Using undo local-server command, you can cancel a local RADIUS server.
RADIUS service, which adopts authentication/authorization/accounting servers to
manage users, is widely used in Quidway series switches. Besides, local
authentication/authorization service is also used in these products and it is called local
RADIUS function, i.e. realize basic RADIUS function on the switch.
Caution:
z When using local RADIUS server function of Huawei, remember the number of UDP
port used for authentication is 1645 and that for accounting is 1646.
z The password configured by this command must be the same as that of the
RADIUS authentication/authorization packet configured by the command key
authentication in RADIUS scheme view.
z When operating as a local RADIUS server, a Quidway S8500 Series Routing Switch
supports CHAP and PAP authentications but not EAP MD5-challenge
authentication.
Quidway series switches support up to 16 local RADIUS scheme.
Related command: radius scheme, state.
Example
# Set the IP address of local RADIUS scheme to 10.110.1.2 and the password to
huawei.
[Quidway] local-server nas-ip 10.110.1.2 key Huawei
2.2.11 nas-ip
Syntax
nas-ip ip-address
To Next Page
Loading...
Need help?
General