General Radius Setup Procedure - HP Q.11. (2510-24) Access Security Manual

Procurve 2510 series
Table of Contents

Advertisement

Table 5-1.
Preparation for Configuring RADIUS on the Switch
• Determine the access methods (console, Telnet, Port-Access (802.1X), SSH, and/or web browser interface) for which
you want RADIUS as the primary authentication method. Consider both Operator (login) and Manager (enable) levels,
as well as which secondary authentication methods to use (local or none) if the RADIUS authentication fails or does
not respond.
ProCurve> show authentication
Status and Counters - Authentication Information
Login Attempts : 3
Respect Privilege : Disabled
| Login
Access Task | Primary
----------- + ---------- ---------- ---------- ----------
Console
| Radius
Telnet
| Radius
Port-Access | EapRadius
Webui
| Radius
SSH
| Radius
Web-Auth
| ChapRadius
MAC-Auth
| ChapRadius
Figure 5-1. Example of Possible RADIUS Access Assignments
• Determine the IP address(es) of the RADIUS server(s) you want to support the switch. (You can configure the switch
for up to three RADIUS servers.)
• If you need to replace the default UDP destination port (1812) the switch uses for authentication requests to a specific
RADIUS server, select it before beginning the configuration process.
• If you need to replace the default UDP destination port (1813) the switch uses for accounting requests to a specific
Radius server, select it before beginning the configuration process.

General RADIUS Setup Procedure

Preparation:
1.
Configure one to three RADIUS servers to support the switch. (That is,
one primary server and one or two backups.) Refer to the documentation
provided with the RADIUS server application.
2.
Before configuring the switch, collect the information outlined below.
Login
Secondary
Local
None
None
None
RADIUS Authentication and Accounting

General RADIUS Setup Procedure

Enable
Enable
Primary
Secondary
Radius
Local
Radius
None
Radius
None
Radius
None
Console access
requires Local as
secondary method to
prevent lockout if the
primary RADIUS
access fails due to loss
of RADIUS server
access or other
problems with the
server.
5-5

Hide quick links:

Advertisement

Table of Contents
loading

This manual is also suitable for:

U.11. (2510-48)Procurve 2510-24Procurve 2510-48

Table of Contents