3Com 4200G 12-Port Configuration Manual page 196

182 C 23: AAA&RADIUS C
HAPTER
Configuring the
Maximum Number of
Transmission
Attempts of RADIUS
Requests
Configuring the
Supported RADIUS
Server Type
Configuring the
Status of RADIUS
Servers
ONFIGURATION
CAUTION:
You must set the share keys separately for the authentication/authorization
packets and the accounting packets if the authentication/authorization server and the
accounting server are different devices and the shared keys on the two servers are
also different.
The communication in RADIUS is unreliable because this protocol adopts UDP packets
to carry data. Therefore, it is necessary for the switch to retransmit a RADIUS request
if it gets no response from the RADIUS server after the response timeout timer
expires. If the maximum number of transmission attempts is reached and the switch
still receives no answer, the switch considers that the request fails.
Table 146 Configure the maximum transmission attempts of RADIUS request
Operation Command
Enter system view system-view
Create a RADIUS radius scheme
scheme and enter its radius-scheme-name
view
Set the maximum retry retry-times
number of
transmission attempts
of RADIUS requests
Table 147 Configure the supported RADIUS server type
Operation Command
Enter system view system-view
Create a RADIUS radius scheme
scheme and enter its radius-scheme-name
view
Specify the type of server-type { 3Com |
RADIUS server standard }
supported by the switch
For the primary and secondary servers (authentication/authorization servers, or
accounting servers) in a RADIUS scheme:
When the switch fails to communicate with the primary server due to some server
trouble, the switch will actively exchange packets with the secondary server.
After the time the primary server keeps in the block state exceeds the time set with
the timer quiet command, the switch will try to communicate with the primary
server again when it receives a RADIUS request. If the primary server recovers, the
switch immediately restores the communication with the primary server instead of
communicating with the secondary server, and at the same time restores the status of
the primary server to the active state while keeping the status of the secondary server
unchanged.
Description
—
Required
By default, a RADIUS scheme named
"system" has already been created in the
system.
Optional
By default, the system tries three times to
transmit a RADIUS request.
Description
—
Required
By default, a RADIUS scheme named
"system" has already been created in the
system.
Optional
By default, the switch supports the standard
type of RADIUS server. The type of RADIUS
server in the default RADIUS scheme
"system" is 3Com.