Configuring The Local Radius Authentication Server; Configuring Source Address For Radius Packets Sent By Nas; Setting The Timers Of The Radius Server - 3Com Switch 4500 26-Port Configuration Manual
Switch 4500 family 26-port, 50-port, pwr 26-port, pwr 50-port
Hide thumbs
Also See for Switch 4500 26-Port:
- Manual (942 pages) ,
- Configuration manual (898 pages) ,
- Getting started manual (128 pages)
Table of Contents
Advertisement
216
C
11: 802.1X C
HAPTER
Configuring the Local
RADIUS Authentication
Server
Configuring Source
Address for RADIUS
Packets Sent by NAS
Setting the Timers of the
RADIUS Server
ONFIGURATION
By default, the default data unit is byte and the default data packet unit is one
packet.
RADIUS service adopts authentication/authorization/accounting servers to manage
users. Local authentication/authorization/accounting service is also used in these
products and it is called local RADIUS authentication server function.
Perform the following commands in System View to create/delete local RADIUS
authentication server.
Table 233 Creating/Deleting the Local RADIUS Authentication Server
Operation
Create the local RADIUS authentication
server
Delete the local RADIUS authentication
server
By default, the IP address of the local RADIUS authentication server is 127.0.0.1
and the password is 3com.
1) When using local RADIUS server function of 3com, remember the number of
the UDP port used for authentication is 1645 and that for accounting is 1646.
2) The password configured by this command must be the same as that of the
RADIUS authentication/authorization packet configured by the command
in RADIUS Scheme View.
authentication
Perform the following configurations in the corresponding view.
Table 234 Configuring Source Address for the RADIUS Packets sent by the NAS
Operation
Configure the source address to be carried in the RADIUS
packets sent by the NAS(RADIUS scheme view).
Cancel the configured source address to be carried in the
RADIUS packets sent by the NAS(RADIUS scheme view).
Configure the source address to be carried in the RADIUS
packets sent by the NAS(System view).
Cancel the configured source address to be carried in the
RADIUS packets sent by the NAS(System view).
You can use either command to bind a source address with the NAS.
By default, no source address is specified and the source address of a packet is the
address of the interface to where it is sent.
Setting the Response Timeout Timer of the RADIUS Server
After RADIUS (authentication/authorization or accounting) request packet has
been transmitted for a period of time, if NAS has not received the response from
the RADIUS server, it has to retransmit the request to guarantee RADIUS service for
the user.
You can use the following command to set response timeout timer of RADIUS
server.
Command
local-server nas-ip ip_address key
password
undo local-server nas-ip ip_address
Command
nas-ip ip_address
undo nas-ip
radius nas-ip
ip_address
undo radius nas-ip
key
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
