HP 6125XLG Configuration Manual page 35

To set the username format and the traffic statistics units for a RADIUS scheme:
Step
1. Enter system view.
2. Enter RADIUS scheme view.
3. Set the format for usernames
sent to the RADIUS servers.
4. (Optional.) Set the data flow
and packet measurement
units for traffic statistics.
Setting the maximum number of RADIUS request transmission attempts
RADIUS uses UDP packets to transfer data. UDP communication is not reliable. To improve reliability,
RADIUS uses a retransmission mechanism. If a NAS sends a RADIUS request to a RADIUS server but
receives no response before the response timeout timer (defined by the timer response-timeout command)
expires, it retransmits the request. If the number of transmission attempts exceeds the specified limit but
it still receives no response, it tries to communicate with other RADIUS servers in active state. If no other
servers are in active state at the time, it considers the authentication or accounting attempt a failure. For
more information about the RADIUS server response timeout timer, see
To set the maximum number of RADIUS request transmission attempts:
Step
1. Enter system view.
2. Enter RADIUS scheme view.
3. Set the maximum number of RADIUS
request transmission attempts.
Setting the status of RADIUS servers
By setting the status of RADIUS servers to blocked or active, you can control the RADIUS servers with
which the device communicates when the current servers are no longer available. In practice, you can
specify one primary RADIUS server and multiple secondary RADIUS servers, with the secondary servers
functioning as the backup of the primary servers. Typically, the device chooses servers based on these
rules:
When the primary server is in active state, the device communicates with the primary server.
•
If the primary server fails, the device changes the server's status to blocked, starts a quiet timer for
the server, and tries to communicate with a secondary server in active state (a secondary server
configured earlier has a higher priority).
If the secondary server is unreachable, the device changes the server's status to blocked, starts a
quiet timer for the server, and continues to check the next secondary server in active state. This
search process continues until the device finds an available secondary server or has checked all
secondary servers in active state.
Command
system-view
radius scheme
radius-scheme-name
user-name-format { keep-original
| with-domain | without-domain }
data-flow-format { data { byte |
giga-byte | kilo-byte |
mega-byte } | packet
{ giga-packet | kilo-packet |
mega-packet | one-packet } }*
Command
system-view
radius scheme
radius-scheme-name
retry retry-times
26
Remarks
N/A
N/A
By default, the ISP domain name is
included in a username.
By default, traffic is counted in
bytes and packets.
The command does not apply to
802.1X and MAC users, for whom
the switch does not support traffic
accounting.
"Setting RADIUS timers."
Remarks
N/A
N/A
The default setting is 3.