Radius Attribute Extended - HP FlexNetwork 7500 Series Command Reference Manual

weight weight-value: Specifies a weight value for the RADIUS server. The value range for the
weight-value argument is 0 to 100, and the default value is 0. The value 0 indicates that the RADIUS
server will not be used for load sharing. This option takes effect only when the RADIUS server load
sharing feature is enabled for the RADIUS scheme. A larger weight value represents a higher
capacity to process authentication requests.
Usage guidelines
Make sure the service port and shared key settings of the primary RADIUS authentication server are
the same as those configured on the server.
Two authentication servers specified for a scheme, primary or secondary, cannot have identical VPN
instance, host name, IP address, and port number settings.
The shared key configured by this command takes precedence over the shared key configured with
the key authentication command.
The server status detection is triggered for the server if the specified test profile exists on the device.
If the specified server resides on an MPLS L3VPN, specify the VPN instance by using the
vpn-instance vpn-instance-name option. The VPN instance specified by this command takes
precedence over the VPN instance specified for the RADIUS scheme.
If you use the primary authentication command to modify or delete the primary authentication
server during an authentication process, communication with the primary server times out.
•
When the RADIUS server load sharing feature is disabled, the device tries to communicate with
an active server that has the highest priority for authentication.
•
When the RADIUS server load sharing feature is enabled, the device performs the following
operations:
a. Checks the weight value and number of currently served users for each active server.
b. Determines the most appropriate server in performance to receive an AAA request.
Examples
# In RADIUS scheme radius1, specify the primary authentication server with IP address 10.110.1.1,
UDP port number 1812, and plaintext shared key 123456TESTauth&!.
<Sysname> system-view
[Sysname] radius scheme radius1
[Sysname-radius-radius1] primary authentication 10.110.1.1 1812 key simple
123456TESTauth&!
Related commands
display radius scheme
key (RADIUS scheme view)
radius-server test-profile
secondary authentication (RADIUS scheme view)
server-load-sharing enable
vpn-instance (RADIUS scheme view)

radius attribute extended

Use radius attribute extended to define an extended RADIUS attribute.
Use undo radius attribute extended to delete user-defined extended RADIUS attributes.
Syntax
radius attribute extended attribute-name [ vendor vendor-id ] code attribute-code type { binary |
date | integer | interface-id | ip | ipv6 | ipv6-prefix | octets | string }
90