Configuring The Radius Protocol; Creating A Radius Scheme - 3Com 3C13636 Configuration Manual

3Com Router 3000 Ethernet Family
Configuration Guide

2.3 Configuring the RADIUS Protocol

The RADIUS protocol is configured scheme by scheme. In a real networking
environment, a RADIUS scheme can comprise an independent RADIUS server or a
pair of primary and secondary RADIUS servers with the same configuration but
different IP addresses. Accordingly, attributes of every RADIUS scheme include IP
addresses of primary and secondary servers, shared key, and RADIUS server type.
Actually, the RADIUS protocol configurations only define the parameters necessary for
the information interaction between a NAS and a RADIUS server. To validate these
parameter settings, you also need to reference the RADIUS scheme containing those
parameter settings in ISP domain view. For more information about the configuration
commands, refer to the section "2.2 Configuring AAA".
RADIUS protocol configuration includes:
Create a RADIUS scheme
Configure RADIUS authentication/authorization servers
Configure RADIUS accounting servers and the related attributes
Configure the shared key for RADIUS packet encryption
Set the maximum number of RADIUS request attempts
Set the supported RADIUS server type
Set RADIUS server state
Set the username format acceptable to the RADIUS server
Set the unit of data flows destined for the RADIUS server
Configure the source address in the RADIUS packets sent by NAS
Set timers regarding RADIUS server
Enable the RADIUS server to send traps when it goes down
Among these tasks, creating a RADIUS scheme and configuring RADIUS
authentication/authorization servers are required, while other tasks are optional at your
discretion.

2.3.1 Creating a RADIUS Scheme

As mentioned earlier, the RADIUS protocol is configured scheme by scheme.
Therefore, before performing other RADIUS protocol configurations, you must create a
RADIUS scheme and enter its view.
You can use the following commands to create/delete a RADIUS scheme.
Perform the following configurations in system view.
Table 2-14 Create/delete a RADIUS scheme
Create a RADIUS scheme and
enter its view.
Operation
3Com Corporation
Chapter 2 AAA and RADIUS/HWTACACS Protocol
Command
radius scheme radius-scheme-name
2-18
Configuration