104
S
MARTNA™ 10G NETWORK ACCESS (SMARTNA-X)
COMMAND LINE INTERFACE REFERENCE |
DRAFT
CREATE RADIUS AUTHSERVER
Use the create radius authserver command to add a RADIUS authentication server. You must use also the set
authentication radius command to enable RADIUS server authentication. If your network has more than one
RADIUS authentication server running, you can add them as backup/failover servers and the system will attempt
to contact the second server in order to validate a user (the system will not switch between RADIUS and
TACACS+ servers though if both are defined). Note that a RADIUS server will outright reject a validation request
when secrets mismatch and will not attempt to validate the secret on a second RADIUS server. However, RADIUS
will attempt to validate the user on a second server if the user account is not present on the first server. TACACS+
servers behave differently, and will attempt to contact a backup server if either the user account is not present or if
secrets mismatch.
Command form create radius authserver <IP-addr> <port> [password]
Example Add a RADIUS authentication server with the following properties:
• IP address: 192.168.10.22
•Port: 1812
• Password: qwaszx
IP-addr Specifies the network IP address of the RADIUS authentication server.
port Specifies the RADIUS port, usually 1812 for authentication servers.
password (Optional) Specifies the password/shared-secret required to access the authentication
server. Passwords are case-sensitive.
Warning: If no password is specified, the shared-secret will be set as an empty string
(“”).
CONTROLLER>create radius authserver 192.168.10.22 1812 qwaszx
To Next Page
Loading...
