Table of Contents
Advertisement
Copyright © 2010, Juniper Networks, Inc.
If you do not configure a primary authentication or accounting server, all authentication
and accounting requests will fail. You can configure other servers as backup in the event
that the primary server cannot be reached. Configure each server individually.
To configure an authentication or accounting RADIUS server:
Specify the authentication or accounting server address.
1.
host1(config)#radius authentication server 10.10.10.1
host1(config-radius)#
or
host1(config)#radius accounting server 10.10.10.6
host1(config-radius)#
(Optional) Specify a UDP port for RADIUS authentication or accounting server
2.
requests.
host1(config-radius)#udp-port 1645
Specify an authentication or accounting server secret.
3.
host1(config-radius)#key gismo
(Optional) Specify the number of retries the router makes to an authentication or
4.
accounting server before it attempts to contact another server.
host1(config-radius)#retransmit 2
(Optional) Specify the number of seconds between retries.
5.
host1(config-radius)#timeout 5
(Optional) Specify the maximum number of outstanding requests.
6.
host1(config-radius)#max-sessions 100
(Optional) Specify the amount of time to remove a server from the available list
7.
when a timeout occurs.
host1(config-radius)#deadtime 10
(Optional) In Global Configuration mode, specify whether the E Series router should
8.
move on to the next RADIUS server when the router receives an Access-Reject
message for the user it is authenticating.
host1(config)#radius rollover-on-reject enable
(Optional) Enable duplicate address checking.
9.
host1(config)aaa duplicate-address-check enable
(Optional) Specify that duplicate accounting records be sent to the accounting
10.
server for a virtual router.
host1(config)#aaa accounting duplication routerBoston
(Optional) Enter the correct virtual router context, and specify the virtual router
11.
group to which broadcast accounting records are sent.
host1(config)#virtual-router vrSouth25
host1:vrSouth25(config)#aaa accounting broadcast westVrGroup38
host1:vrSouth25(config)#exit
Chapter 1: Configuring Remote Access
23
Advertisement
Table of Contents
Troubleshooting
Related Manuals for Juniper JUNOSE SOFTWARE 11.2.X - BROADBAND ACCESS CONFIGURATION GUIDE 7-20-2010
Related Products for Juniper JUNOSE SOFTWARE 11.2.X - BROADBAND ACCESS CONFIGURATION GUIDE 7-20-2010
- Juniper JUNOSE SOFTWARE 11.2.X - LINK LAYER CONFIGURATION GUIDE 7-7-2010
- Juniper JUNOS OS 10.3 - XML MANAGEMENT PROTOCOL GUIDE 6-30-2010
- Juniper JUNOS SOFTWARE 10.2 - SOFTWARE INSTALLATION AND UPGRADE GUIDE 4-28-2010
- Juniper JUNOS 10.1 - CONFIGURATION GUIDE 1-2010
- Juniper JUNOSE 11.1.X - BROADBAND ACCESS CONFIGURATION GUIDE 6-4-2010
- Juniper JUNOSE SOFTWARE 11.1.X - BROADBAND ACCESS CONFIGURATION GUIDE 6-6-2010
- Juniper JUNOSE 11.1.X - QUALITY OF SERVICE CONFIGURATION GUIDE 3-21-2010
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.0.X - BGP AND MPLS CONFIGURATION GUIDE 2009-12-30
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - BGP AND MPLS CONFIGURATION GUIDE 2010-10-12
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - IP SERVICES CONFIGURATION GUIDE 2010-10-01
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - MULTICAST ROUTING CONFIGURATION GUIDE 2010-10-07
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - PHYSICAL LAYER CONFIGURATION GUIDE 2010-09-24
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - POLICY MANAGEMENT CONFIGURATION GUIDE 2010-10-04
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - SERVICE AVAILABILITY CONFIGURATION GUIDE 2010-10-08
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - LINK LAYER CONFIGURATION GUIDE 2010-10-13
- Juniper JUNOSE SOFTWARE FOR E SERIES 11.3.X - QUALITY OF SERVICE CONFIGURATION GUIDE 2010-09-22