Brocade Communications Systems A7533A - Brocade 4Gb SAN Switch Base Command Reference Manual page 36

2
aaaConfig
The following are the options for --add and --change actions:
-p port
-s secret
-t timeout
-a [pap|chap|peap-mschapv2]
The following gives a detailed description of each action type:
--show
--add server [-p port] [-s secret] [-t timeout] [-a pap|chap | peap-mschapv2]
--remove server
--change server [-p port] [-s secret] [-t timeout] [-a pap|chap | peap-mschapv2]
--move server to_position
--localonly
--radiusonly
--radiuslocal
--radiuslocalbackup Enables the current RADIUS configuration as the primary AAA service and the
Examples To display the current RADIUS configuration:
4
RADIUS server port number.
Common secret between the switch and RADIUS server.
Response timeout for the RADIUS server.
Use PAP or CHAP or PEAP-MSCHAPv2 as the authentication protocol.
List the current RADIUS servers and their parameters.
Adds the specified server to the end of RADIUS configuration list, with
specified port number, shared secret, timeout and if PAP or CHAP or
MSCHAPv2 is to be used as authentication protocol, server must be different
from those in the existing configuration.
Removes the specified server from the RADIUS configuration list.server must
match one in the existing configuration. To remove the last server, you must
disable RADIUS configuration first.
Changes parameters for the specified server in the existing RADIUS
configuration list. server must match one in the existing configuration.
Moves the specified server in the existing RADIUS configuration list from the
current position to the specified new position. This rearranges the order that
the specified RADIUS server is used.
Enables the switch-local database for AAA services. Use this to select the
switch-local database as the primary AAA service.
Enables the current RADIUS configuration for AAA services. Use this to select
the RADIUS configuration as the primary AAA service. To enable a RADIUS
configuration, at least one server must exist in the configuration.
Enables the current RADIUS configuration as the primary AAA service and the
switch-local database as the secondary AAA service. When enabled, if
RADIUS authentication fails, the switch-local database will be accessed for
AAA services.
switch-local database as the backup AAA service. When enabled, if RADIUS
authentication fails, requests for AAA services are denied. If the RADIUS
server times out, requests are sent to the switch-local database.
switch:admin> aaaconfig --show
Position Server
1 192.168.233.48
2 192.168.233.44
3 radserver
Port Secret Timeout(s)
1812 sharedsecret
1812 sharedsecret
1812 private
Fabric OS Command Reference Manual
Auth-Protocol
3 CHAP
3 CHAP
5 CHAP
53-1000436-01