Table of Contents
Advertisement
Administering the WMIC
Command
Step 5
login authentication {default |
list-name}
Step 6
radius-server attribute 32
include-in-access-req format %h
Step 7
end
Step 8
show running-config
Step 9
copy running-config startup-config
To disable AAA, use the no aaa new-model command in global configuration mode. To disable AAA
authentication, use the no aaa authentication login {default | list-name} method1 [method2...]
command in global configuration mode. To disable RADIUS authentication for logins or to return to the
default value, use the no login authentication {default | list-name} command in line configuration
mode.
Defining AAA Server Groups
Configure the bridge to use AAA server groups to group existing server hosts for authentication. Select
a subset of the configured server hosts, and use them for a particular service. The server group is used
with a global server-host list, which lists the IP addresses of the selected server hosts.
Server groups also can include multiple host entries for the same server if each entry has a unique
identifier (the combination of the IP address and UDP port number), allowing different ports to be
individually defined as RADIUS hosts providing a specific AAA service. If you configure two different
host entries on the same RADIUS server for the same service (such as accounting), the second
configured host entry acts as a failover backup to the first one.
Use the server group server configuration command to associate a particular server with a defined group
server. To identify the server by its IP address or to identify multiple host instances or entries, use the
optional auth-port and acct-port keywords.
To define the AAA server group and associate a particular RADIUS server with it, follow these steps,
beginning in privileged EXEC mode:
Command
Step 1
configure terminal
Step 2
aaa new-model
Purpose
Applies the authentication list to a line or set of lines.
If you specify default, use the default list created with the aaa
•
authentication login command.
For list-name, specify the list created with the aaa authentication
•
login command.
Configures the device to send its system name in the NAS_ID attribute for
authentication.
Returns to privileged EXEC mode.
Verifies your entries.
(Optional) Saves your entries in the configuration file.
Purpose
Enters global configuration mode.
Enables AAA.
Cisco 3200 Series Wireless MIC Software Configuration Guide
Configuring and Enabling RADIUS
25
Hide quick links:
Advertisement
Table of Contents
