Table of Contents
Advertisement
# the port name or number is optional. The default port name is
# "radius", and is looked up from /etc/services The timeout field is
# optional. The default timeout is 3 seconds.
#
# If multiple RADIUS server lines exist, they are tried in order. The
# first server to return success or failure causes the module to return
# success or failure. Only if a server fails to response is it skipped,
# and the next server in turn is used.
#
# The timeout field controls how many seconds the module waits before
# deciding that the server has failed to respond.
#
# server[:port] shared_secret timeout (s)
# 127.0.0.1 secret 1
# otherserver othersecret 3
OUR.RADIUS.SERVER.IP:1645 OurSecret 1 3
5.
Enter the IP address for the server.
6.
(Optional) Define an alternate port.
7.
Enter the secret (shared password).
8.
(Optional) Enter a value to redefine the time-out.
9.
(Optional) Enter a value to redefine the number of retries. The following screen example
shows entries that define the RADIUS authentication server and the accounting server to be the
same server with the same IP address, sets the secret to avocent, the time-out to 5 seconds and
the number of retries to 5.
auth1 172.20.0.2 avocent 5 5
acct1 172.20.0.2 avocent 5 5
NOTE: Always configure both parameters auth1 and acct1.
10. Save and quit the file.
NOTE: Multiple RADIUS servers can be configured in this file. The servers are tried in the order in which they
appear. If a server fails to respond, the next configured server is tried.
Configuring group authorization for TACACS+ authentication
The two tasks listed below must be done to configure groups for TACACS+ authentication.
Chapter 6: Administration Tasks Not Performed in the Web Interface
97
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
Need help?
Do you have a question about the MERGEPOINT 53XX SP MANAGER and is the answer not in the manual?
Questions and answers