Configuring Switch-To-Radius-Server Communication - Cisco Catalyst 2960-XR Security Configuration Manual

Configuring Web-Based Authentication

Configuring Switch-to-RADIUS-Server Communication

Beginning in privileged EXEC mode, follow these steps to configure the RADIUS server parameters:
Before You Begin
Identify the following RADIUS security server settings that will be used in theses instructions:
• Host name
• Host IP address
• Host name and specific UDP port numbers
• IP address and specific UDP port numbers
The combination of the IP address and UDP port number creates a unique identifier, that enables RADIUS
requests to be sent to multiple UDP ports on a server at the same IP address. If two different host entries on
the same RADIUS server are configured for the same service (for example, authentication) the second host
entry that is configured functions as the failover backup to the first one. The RADIUS host entries are chosen
in the order that they were configured.
SUMMARY STEPS
1. configure terminal
2. ip radius source-interface vlan vlan interface number
3. radius-server host {hostname | ip-address} test username username
4. radius-server key string
5. radius-server dead-criteria tries num-tries
6. end
DETAILED STEPS
Command or Action
Step 1
configure terminal
Example:
Switch# configure terminal
Step 2 ip radius source-interface vlan vlan
interface number
Example:
Switch(config)# ip radius
source-interface vlan 80
Step 3 radius-server host {hostname |
ip-address} test username username
OL-29434-01
Purpose
Enters the global configuration mode.
Specifies that the RADIUS packets have the IP address of the indicated interface.
Specifies the host name or IP address of the remote RADIUS server.
Catalyst 2960-XR Switch Security Configuration Guide, Cisco IOS Release 15.0(2)EX1
Configuring Switch-to-RADIUS-Server Communication
315