Setting Timers Regarding Radius Servers - H3C S9500E Series Security Configuration Manual

Routing switches

Hide thumbs Also See for S9500E Series:

Configuration manual (459 pages)

Command reference manual (225 pages)

Installation manual (154 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

Table of Contents

To do...

Specify the source IP

address for RADIUS

packets to be sent

Follow these steps to specify a source IP address for a specific RADIUS scheme:

To do...

Enter system view

Enter RADIUS scheme view

Specify the source IP

address for RADIUS

packets to be sent

Setting timers regarding RADIUS servers

When communicating with the RADIUS server, a switch can enable the following three timers:

•

RADIUS server response timeout (response-timeout): If a NAS receives no response from

the RADIUS server in a period of time after sending a RADIUS request

(authentication/authorization or accounting request), it has to resend the request so that the

user has more opportunity to obtain the RADIUS service. The NAS uses the RADIUS server

response timeout timer to control the transmission interval.

•

Server quiet timer (quiet): If a server is not reachable, the switch changes its state to block,

starts this timer for the server, and turns to a server in active state. After this timer expires,

the switch turns the state of the server to active.

•

Real-time accounting interval (realtime-accounting): This timer defines the interval for

performing real-time accounting of users. After this timer is set, the switch will send

accounting information of online users to the RADIUS server at the specified interval.

Follow these steps to set timers regarding RADIUS servers:

To do...

Enter system view

Enter RADIUS scheme view

Set the RADIUS server response

timeout timer

Set the quiet timer for the

primary server

Use the command...

radius nas-ip { ip-address [

vpn-instance vpn-instance-

name ] | ipv6 ipv6-address }

Use the command...

system-view

radius scheme radius-

scheme-name

nas-ip { ip-address | ipv6

ipv6-address }

Use the command...

system-view

radius scheme radius-scheme-

name

timer response-timeout

seconds

timer quiet minutes

Remarks

Required

By default, the IP address of the outbound

interface is used as the source IP address.

Remarks

—

Required

By default, the IP address of the outbound

interface is used as the source IP address.

Remarks

—

Optional

3 seconds by default

Optional

5 minutes by default

Table of Contents

Setting Timers Regarding Radius Servers - H3C S9500E Series Security Configuration Manual

Setting timers regarding RADIUS servers

Troubleshooting

Related Manuals for H3C S9500E Series

Related Content for H3C S9500E Series

Table of Contents