HP 3600 v2 Series Security Configuration Manual page 36
Hide thumbs
Also See for 3600 v2 Series:
- Command reference manual (510 pages) ,
- Configuration manual (449 pages) ,
- Installation manual (62 pages)
Table of Contents
Advertisement
Setting the supported RADIUS server type
The supported RADIUS server type determines the type of the RADIUS protocol that the switch uses to
communicate with the RADIUS server. It can be standard or extended:
Standard—Uses the standard RADIUS protocol, compliant to RFC 2865 and RFC 2866 or later.
•
Extended—Uses the proprietary RADIUS protocol of HP.
•
When the RADIUS server runs iMC, you must set the RADIUS server type to extended. When the RADIUS
server runs third-party RADIUS server software, either RADIUS server type applies. For the switch to
function as a RADIUS server to authenticate login users, you must set the RADIUS server type to standard.
Follow these steps to set the RADIUS server type:
To do...
Enter system view
Enter RADIUS scheme view
Set the RADIUS server type
NOTE:
Changing the RADIUS server type will restore the unit for data flows and that for packets that are sent to
the RADIUS server to the defaults.
Setting the maximum number of RADIUS request transmission attempts
Because RADIUS uses UDP packets to transfer data, the communication process is not reliable. RADIUS
uses a retransmission mechanism to improve the reliability. If a NAS sends a RADIUS request to a
RADIUS server but receives no response after the response timeout timer (defined by the timer
response-timeout command) expires, it retransmits the request. If the number of transmission attempts
exceeds the specified limit but it still receives no response, it tries to communicate with other RADIUS
servers in active state. If no other servers are in active state at the time, it considers the authentication or
accounting attempt a failure. For more information about RADIUS server states, see
RADIUS
servers."
Follow these steps to set the maximum number of RADIUS request transmission attempts for a scheme:
To do...
Enter system view
Enter RADIUS scheme view
Set the maximum number of
RADIUS request transmission
attempts
NOTE:
The maximum number of transmission attempts of RADIUS packets multiplied by the RADIUS server
•
response timeout period cannot be greater than 75 seconds.
For more information about the RADIUS server response timeout period, see
•
controlling communication with RADIUS
Use the command...
system-view
radius scheme
radius-scheme-name
server-type { extended |
standard }
Use the command...
system-view
radius scheme
radius-scheme-name
retry retry-times
servers."
25
Remarks
—
—
Optional
standard by default
"Setting the status of
Remarks
—
—
Optional
3 by default
"Setting timers for
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
