HP 5120 SI Series Security Configuration Manual page 36
Hide thumbs
Also See for 5120 SI Series:
- Command reference manual (395 pages) ,
- Installation manual (48 pages) ,
- Specification (33 pages)
Table of Contents
Advertisement
communicate with other RADIUS servers in the active state. If no other servers are in the active state at the
time, it considers the authentication a failure. For more information about RADIUS server states, see
"Setting the status of RADIUS
Follow these steps to set the maximum number of RADIUS request transmission attempts:
To do...
Enter system view
Enter RADIUS scheme view
Set the maximum number of
RADIUS request transmission
attempts
.
NOTE:
The maximum number of transmission attempts of RADIUS packets multiplied by the RADIUS server
•
response timeout period cannot be greater than 75 seconds.
•
For more information about the RADIUS server response timeout period, see
controlling communication with RADIUS
Setting the supported RADIUS server type
The supported RADIUS server type determines the type of the RADIUS protocol that the device uses to
communicate with the RADIUS server. It can be standard or extended:
Standard—Uses the standard RADIUS protocol, compliant to RFC 2865 and RFC 2866 or later.
•
•
Extended—Uses the proprietary RADIUS protocol of HP.
When the RADIUS server runs iMC, you must set the RADIUS server type to extended. When the RADIUS
server runs third-party RADIUS server software, either RADIUS server type applies.
Follow these steps to set the RADIUS server type:
To do...
Enter system view
Enter RADIUS scheme view
Set the RADIUS server type
NOTE:
Changing the RADIUS server type will restore the unit for data flows and that for packets that are sent to
the RADIUS server to the defaults.
Setting the status of RADIUS servers
By setting the status of RADIUS servers to blocked or active, you can control which servers the device will
communicate with for authentication, authorization, and accounting or turn to when the current servers
are not available anymore. In practice, you can specify one primary RADIUS server and multiple
secondary RADIUS servers, with the secondary ones as the backup of the primary one. Generally, the
device chooses servers based on these rules:
servers."
Use the command...
system-view
radius scheme
radius-scheme-name
retry retry-times
servers."
Use the command...
system-view
radius scheme
radius-scheme-name
server-type { extended |
standard }
24
Remarks
—
—
Optional
3 by default
"Setting timers for
Remarks
—
—
Optional
standard by default
Advertisement
Table of Contents
Troubleshooting
