Configuring Radius Authentication/Authorization Servers - H3C S7500 Series Operation Manual
Hide thumbs
Also See for S7500 Series:
- Installation manual (79 pages) ,
- Operation manual (47 pages) ,
- Command manual (39 pages)
Table of Contents
Advertisement
Operation Manual – AAA & RADIUS & HWTACACS & EAD
H3C S7500 Series Ethernet Switches
Caution:
A RADIUS scheme can be referenced by multiple ISP domains at the same time.
1.4.2 Configuring RADIUS Authentication/Authorization Servers
Table 1-13 Configure RADIUS authentication/authorization server
Enter system view
Create a RADIUS scheme
and enter its view
Set the IP address and
port number of the
primary RADIUS
authentication/authorizati
on server
Set the IP address and
port number of the
secondary RADIUS
authentication/authorizati
on server
Caution:
The authentication response sent from the RADIUS server to the RADIUS client
carries the authorization information. Therefore, no separate authorization server
can be specified.
In an actual network environment, you can either specify two RADIUS servers as
the primary and secondary authentication/authorization servers respectively, or
specify
authentication/authorization servers.
The IP address and port number of the primary authentication server used by the
default RADIUS scheme system are 127.0.0.1 and 1645.
To do...
system-view
radius scheme
radius-scheme-name
primary authentication
ip-address [ port-number ]
secondary
authentication
ip-address [ port-number ]
only
one
server
Chapter 1 AAA & RADIUS & HWTACACS
Use the command...
as
both
the
1-23
Configuration
Remarks
—
Required
By default, a RADIUS
scheme named system
has already been created
in the system.
Required
By default, the IP address
and UDP port number of
the primary server are
0.0.0.0 and 1812
respectively.
Optional
By default, the IP address
and UDP port number of
the secondary server are
0.0.0.0 and 1812
respectively.
primary
and
secondary
Advertisement
Chapters
Table of Contents
Troubleshooting
