Enterasys G3G170-24 Cli Reference Manual page 607
G-series
Hide thumbs
Also See for G3G170-24:
- Hardware installation manual (59 pages) ,
- Hardware installation manual (70 pages) ,
- Quick reference (2 pages)
Table of Contents
Advertisement
Table 20-1 show radius Output Details (Continued)
Output Field
Realm-Type
set radius
Use this command to enable, disable, or configure RADIUS authentication.
Syntax
set radius {enable | disable} | {retries number-of-retries} | {timeout timeout} |
{server index ip-address port [secret-value] [realm {management-access | any |
network-access}} | {realm {management-access | any | network-access} {index| all}}
Parameters
enable | disable
retries number‐of‐
retries
timeout timeout
server index
ip_address port
secret‐value
realm
management‐
access | any |
network‐access
index | all
What It Displays...
Realm defines who has to go through the RADIUS server for authentication.
• Management-access: This means that anyone trying to access the switch
(Telnet, SSH, Local Management) has to authenticate through the RADIUS
server.
• Network-access: This means that all the users have to authenticate to a RADIUS
server before they are allowed access to the network.
• Any-access: Means that both Management-access and Network-access have
been enabled.
Enables or disables the RADIUS client.
Specifies the number of retry attempts before the RADIUS server times out.
Valid values are from 0 to 10. Default is 3.
Specifies the maximum amount of time (in seconds) to establish contact
with the RADIUS server before retry attempts begin. Valid values are from
1 to 30. Default is 20 seconds.
Specifies the index number, IP address and the UDP authentication port for
the RADIUS server.
(Optional) Specifies an encryption key to be used for authentication
between the RADIUS client and server.
Realm allows you to define who has to go through the RADIUS server for
authentication.
•
management‐access: This means that anyone trying to access the switch
(Telnet, SSH, Local Management) has to authenticate through the
RADIUS server.
•
network‐access: This means that all the users have to authenticate to a
RADIUS server before they are allowed access to the network.
•
any: Means that both management‐access and network‐access have
been enabled.
Note: If the management-access or any access realm has been configured, the
local "admin" account is disabled for access to the switch using the console, Telnet,
or Local Management. Only the network-access realm allows access to the local
"admin" account.
Applies the realm setting to a specific server or to all servers.
Enterasys G-Series CLI Reference 20-5
set radius
Advertisement
Table of Contents
