1. Manuals
  2. Brands
  3. Avaya Manuals
  4. Network Router
  5. ERS 1600
  6. Technical configuration manual

Avaya ERS 1600 Technical Configuration Manual page 15

Authentication, authorization and accounting (aaa) for ers and es
Hide thumbs Also See for ERS 1600:
Table of Contents

Advertisement

2.4.1 ES 460/470 Series and ERS 2500, 4500, 5500
ACLI or JDM (Java Device Manager) can be used to configure the switch. For simplicity and readability,
we will document command line interface commands assuming the RADIUS server IP address is
10.10.50.40, and the client shared secret is ―Dda‖ for telnet access authentication.
To configure RADIUS
4548GT-PWR# conf t
Enter configuration commands, one per line.
4548GT-PWR(config)# radius-server host 10.10.50.40
4548GT-PWR(config)# radius-server key Dda
4548GT-PWR(config)# radius-server password fallback
4548GT-PWR(config)# cli password switch telnet radius
4548GT-PWR(config)# radius accounting enable
To display RADIUS configuration
4548GT-PWR(config)# show radius-server
Password Fallback:
Primary Host:
10.10.50.40
Secondary Host:
Port:
1812
Time-out:
2
Key:
***************
Radius Accounting is
AcctPort:
1813
4548GT-PWR(config)# show cli password type
Console Switch Password Type: None
Console Stack Password Type: None
Telnet/WEB Switch Password Type: RADIUS Authentication
Telnet/WEB Stack Password Type: None
The source IP address sent by the switch (Layer 2 operation) is always the Management IP
address configured on the switch when sending a RADIUS client authentication request.
There is no way to change source RADIUS IP address. When the switch is configured in routed
mode, it uses interface IP address where frame is sent. Hence, if you have multiple IP interfaces
facing the core network where a RADIUS request could be sent, you will have to configure the
RADIUS server with each IP address.
With the ES 460/470 and ERS 2500, 4500, 5500 switches, you can configure two RADIUS
servers, a primary server and a secondary server. If all servers are not reachable (no answers)
then local authentication is done if Password Fallback feature is enabled. You get the following
message at console:
Querying RADIUS server, please wait...
no response from RADIUS servers
Authentication, Authorization and Accounting (AAA) for ERS and ES
November 2010
Enabled
0.0.0.0
Enabled
Technical Configuration Guide
End with CNTL/Z.
avaya.com
15

Advertisement

Table of Contents
loading

Related Manuals for Avaya ERS 1600

Related Products for Avaya ERS 1600

This manual is also suitable for:

Ers 8300Ers 2500Ers 8600Ers 5500Es 460Es 470 ... Show all

Table of Contents