Table of Contents
Advertisement
Use the undo primary authentication command to remove the configuration.
By default, no primary RADIUS authentication/authorization server is specified.
Note that:
After creating a RADIUS scheme, you are supposed to configure the IP address and UDP port of
each RADIUS server (primary/secondary authentication/authorization or accounting server).
Ensure that at least one authentication/authorization server and one accounting server are
configured, and that the RADIUS service port settings on the device are consistent with the port
settings on the RADIUS servers.
The IP addresses of the primary and secondary authentication/authorization servers cannot be
the same. Otherwise, the configuration fails.
You can use the commands to change the settings only when no user is using the RADIUS
scheme.
Related commands: key, radius scheme, state.
Examples
# Specify the primary authentication/authorization server for RADIUS scheme radius1.
<Sysname> system-view
[Sysname] radius scheme radius1
[Sysname-radius-radius1] primary authentication 10.110.1.1 1812
radius client
Syntax
radius client enable
undo radius client
View
System view
Default Level
2: System level
Parameters
None
Description
Use the radius client enable command to enable the listening port of the RADIUS client.
Use the undo radius client command to disable the listening port of the RADIUS client.
By default, the listening port is enabled.
Note that when the listening port of the RADIUS client is disabled:
The RADIUS client can either accept authentication, authorization or accounting requests or
process timer messages. However, it fails to transmit and receive packets to and from the
RADIUS server.
2-11
Advertisement
Chapters
Table of Contents
