HP 10500 Series Configuration Manual page 34

To specify a VPN for a RADIUS scheme:
Step
1. Enter system view.
2. Enter RADIUS scheme view.
3. Specify a VPN for the RADIUS scheme.
Setting the username format and traffic statistics units
A username is usually in the format userid@isp-name, where isp-name represents the ISP domain name
of the user and is used by the device to determine which users belong to which ISP domains. However,
some earlier RADIUS servers do not recognize usernames that contain the user ISP domain name. In this
case, you can configure the device to remove the domain name from each username before sending the
username.
The device periodically sends accounting updates to RADIUS accounting servers to report the traffic
statistics of online users. For normal and accurate traffic statistics, make sure that the data flow and
packet unit settings on the device are consistent with those on the RADIUS server.
Follow these guidelines when you set the username format and the traffic statistics units:
If a RADIUS scheme defines that the username is sent without the ISP domain name, do not apply
•
the RADIUS scheme to more than one ISP domain. Otherwise, users using the same username but
in different ISP domains are considered the same user.
For level switching authentication, the user-name-format keep-original and user-name-format
•
without-domain commands produce the same results. They make sure that usernames sent to the
RADIUS server carry no ISP domain name.
To set the username format and the traffic statistics units for a RADIUS scheme:
Step
1. Enter system view.
2. Enter RADIUS scheme view.
3. Set the format for usernames
sent to the RADIUS servers.
4. Specify the unit for data flows
or packets sent to the RADIUS
servers.
Setting the supported RADIUS server type
The supported RADIUS server type determines the type of the RADIUS protocol that the device uses to
communicate with the RADIUS server. It can be standard or extended:
Standard—Uses the standard RADIUS protocol, compliant to RFC 2865 and RFC 2866 or later.
•
Extended—Uses the proprietary RADIUS protocol of HP.
•
When the RADIUS server runs on IMC, you must set the RADIUS server type to extended. When the
RADIUS server runs third-party RADIUS server software, either RADIUS server type applies.
Command
system-view
radius scheme radius-scheme-name
vpn-instance vpn-instance-name
Command
system-view
radius scheme radius-scheme-name
user-name-format { keep-original |
with-domain | without-domain }
data-flow-format { data { byte |
giga-byte | kilo-byte | mega-byte }
| packet { giga-packet | kilo-packet
| mega-packet | one-packet } }*
24
Remarks
N/A
N/A
Optional.
By default, the ISP domain name
is included in a username.
Optional.
The default unit is byte for data
flows and one-packet for data
packets.