Configuring Radius Server Monitoring Parameters - Cisco MDS 9000 Series Configuration Manual

Security
Hide thumbs Also See for MDS 9000 Series:
Table of Contents

Advertisement

Configuring RADIUS Server Monitoring Parameters

ldap search-map s0
userprofile attribute-name description search-filter
(&(objectClass=inetOrgPerson)(cn=$userid)) base-DN dc=acme,dc=com
exit
show ldap-search-map
The following example shows how to configure AAA authorization with certificate authentication for an
LDAP server:
aaa authorization ssh-certificate default group LDAPServer1 LDAPServer2
exit
show aaa authorization
Configuring RADIUS Server Monitoring Parameters
Cisco MDS 9000 Family switches can use the RADIUS protocol to communicate with remote AAA servers.
You can configure multiple RADIUS servers and server groups and set timeout and retry counts.
RADIUS is a distributed client/server protocol that secures networks against unauthorized access. In the Cisco
implementation, RADIUS clients run on Cisco MDS 9000 Family switches and send authentication requests
to a central RADIUS server that contains all user authentication and network service access information.
This section defines the RADIUS operation, identifies its network environments, and describes its configuration
possibilities.
This section includes the following topics:
About RADIUS Server Default Configuration
Fabric Manager allows you to set up a default configuration that can be used for any RADIUS server that you
configure the switch to communicate with. The default configuration includes:
• Encryption type
• Timeout value
• Number of retransmission attempts
• Allowing the user to specify a RADIUS server at login
Setting the RADIUS Server IPv4 Address
You can add up to 64 RADIUS servers. RADIUS keys are always stored in encrypted form in persistent
storage. The running configuration also displays encrypted keys.
To specify the host RADIUS server IPv4 address and other options, follow these steps:
Procedure
Step 1
switch# configure terminal
Enters configuration mode.
Step 2
switch(config)# radius-server host 10.10.0.0 key HostKey
Cisco MDS 9000 Series Security Configuration Guide, Release 8.x
54
Configuring Security Features on an External AAA Server

Advertisement

Table of Contents
loading

Table of Contents