3Com Switch 7700 Configuration Manual page 316

308 C 9: AAA
HAPTER AND
RADIUS O
PERATION
Setting Username Format Transmitted to RADIUS Server
As mentioned before, clients are generally named in userid@isp-name format. The
part following "@" is the ISP domain name. The Switch 7700 will put users into
different ISP domains according to their domain name. However, some earlier
RADIUS servers rejected the username including ISP domain name. In this case,
you have to remove the domain name before sending the username to the
RADIUS server. The following command of switch decides whether the username
to be sent to RADIUS server carries ISP domain name or not.
Table 32 Set Username Format Transmitted to RADIUS Server
Operation
Set username format transmitted to the
RADIUS Server
If a RADIUS server group is configured not to allow usernames including ISP
domain names, the RADIUS server group cannot be simultaneously used in more
than one ISP domain. Otherwise, the RADIUS server will regard two users in
different ISP domains as the same user by mistake, if they have the same
username (excluding their respective domain names.)
By default, the RADIUS server group acknowledges that the username sent to it
includes ISP domain name.
Setting the Unit of Data Flow that Transmitted to RADIUS Server
The following command defines the unit of the data flow sent to RADIUS server.
Table 33 Set the Unit of Data Flow Transmitted to RADIUS Server
Operation
Set the unit of data flow transmitted to
RADIUS server
By default, the default data unit is a byte and the default data packet unit is one
packet.
Configuring a Local RADIUS Server Group
RADIUS service adopts authentication/authorization/accounting servers to manage
users. Local authentication/authorization/accounting service is also used in these
products and it is called local RADIUS function.
Perform the following commands in system view to create/delete local RADIUS
server group.
Table 34 Create/Delete a Local RADIUS Server Group
Operation
Create a local RADIUS server group and enter
its view
Delete a local RADIUS server group
By default, the IP address of local RADIUS server group is 127.0.0.1 and the
password is 3com.
Command
user-name-format {with-domain |
without-domain}
Command
data-flow-format data { byte | giga-byte |
kilo-byte | mega-byte } packet { giga-byte |
kilo-byte | mega-byte | one-packet }
Command
local-radius nas-ip ip-address key password
undo local-radius nas-ip ip-address