3Com Switch 7700 Configuration Manual page 317

When using the local RADIUS server function of the Switch 7700, remember the
number of the UDP port used for authentication is 1812 and the number for
accounting is 1813.
Displaying and Debugging the AAA and RADIUS Protocols
After you configure RADIUS, execute the display command in all views to display
the running of the AAA and RADIUS configuration, and to verify the effect of the
configuration. Execute the reset command in user view to reset AAA and RADIUS
configuration. Execute the debugging command in user view to debug AAA and
RADIUS.
Table 35 Display and Debug AAA and RADIUS Protocol
Operation
Display the configuration information of the
specified or all the ISP domains.
Display related information of user's
connection
Display related information of the local user
Display information of local RADIUS server
group
Display the configuration information of all
the RADIUS server groups or a specified one
Display the statistics information of RADIUS
packets
Display the stopping accounting requests
saved in buffer without response (from system
view)
Delete the stopping accounting requests
saved in buffer without response (from system
view)
AAA/RADIUS protocol configuration commands are generally used together with
Example: AAA and
RADIUS Protocol
802.1x configuration commands. Refer to the typical configuration examples
Configuration
provided in "Configuring 802.1x" on page 289.
Configuring FTP/Telnet User Authentication at Remote RADIUS Server
Configuring Telnet user authentication at the remote server is similar to
configuring FTP users. The following description is based on Telnet users.
In the environment illustrated in the following figure, it is required to achieve
through proper configuration that the RADIUS server authenticates the Telnet
users to be registered.
One RADIUS server (as authentication server) is connected to the switch and the
server IP address is 10.110.91.146. The password for exchanging messages
Configuring the AAA and RADIUS Protocols
Command
display domain [isp-name]
display connection {access-type {dot1x |
gcm} | domain isp-name | interface portnum
| ip ip-address | mac mac-address |
radius-scheme radius-scheme-name | vlan
vlanid | ucibindex ucib-index | user-name
user-name}
display local-user [domain isp-name |
idle-cut {disable | enable} | service-type
{telnet | ftp | lan-access } | state {active |
block} | user-name user-name | vlan vlan-id]
display local-server statistics
display radius [radius-server-name]
display radius statistics
display stop-accounting-buffer
{radius-scheme radius-scheme-name |
session-id session-id | time-range start-time
stop-time | user-name user-name}
reset stop-accounting-buffer
{radius-scheme radius-scheme-name |
session-id session-id | time-range start-time
stop-time | user-name user-name}
309