Configuring Radius Accounting - H3C S5120-SI Series Operation Manual
Hide thumbs
Also See for S5120-SI Series:
- Command reference manual (910 pages) ,
- Configuration manual (745 pages) ,
- Installation manual (70 pages)
Table of Contents
Advertisement
To do...
Set the quiet timer for the
primary server
Set the real-time accounting
interval
The maximum number of retransmission attempts of RADIUS packets multiplied by the RADIUS
server response timeout period cannot be greater than 75. This product is also the upper limit of the
timeout time of different access modules.
For an access module, the maximum number of retransmission attempts multiplied by the RADIUS
server response timeout period must be smaller than the timeout time. Otherwise, stop-accounting
messages cannot be buffered, and the primary/secondary server switchover cannot take place.
For example, as the timeout time of voice access is 10 seconds, the product of the two parameters
cannot exceed 10 seconds; as the timeout time of Telnet access is 30 seconds, the product of the
two parameters cannot exceed 30 seconds.
To configure the maximum number of retransmission attempts of RADIUS packets, refer to the
command retry in the command manual.
Configuring RADIUS Accounting-On
With the accounting-on feature enabled, a device sends, whenever it reboots, accounting-on packets to
the RADIUS server, so that the server logs out users that have logged in through the device before the
reboot. This solves the problem that users online before the reboot cannot re-log in after the reboot.
Once configured, the accounting-on feature functions immediately after the device restarts and
recovers its configurations. The feature functions by sending and retransmitting accounting-on requests
and dealing with accounting-on responses, and the device provides AAA services only after the
accounting-on feature completes its tasks. When the RADIUS servers of many RADIUS schemes (up to
16 schemes can be configured at present) are unavailable, the number of accounting-on packet
retransmission attempts is too big, or the retransmission interval of accounting-on packets is too long,
the accounting-on feature may take a long time, affecting user access negatively.
Follow these steps to configure accounting-on feature of a RADIUS server:
To do...
Enter system view
Enter RADIUS scheme view
Enable accounting-on
Set
the
accounting-on
retransmission attempts
Use the command...
timer quiet minutes
timer realtime-accounting
minutes
Use the command...
system-view
radius
radius-scheme-name
accounting-on enable
number
of
accounting-on enable send
packet
send-times
scheme
1-26
Remarks
Optional
5 minutes by default
Optional
12 minutes by default
Remarks
—
—
Required
Disabled by default
Optional
5 times by default
Advertisement
Chapters
Table of Contents
Troubleshooting
