Filter
Top Products
AAA and RADIUS Configuration Examples 543
Figure 169 Networking diagram of typical AAA and RADIUS configuration
1 Enable AAA and configure default authentication method list of PPP user.
[Router]aaa-enable
[Router]aaa authentication-scheme ppp default radius
2 Configure IP address and port of RADIUS server.
[Router]radius server 129.7.66.66
[Router]radius server 129.7.66.67
3 Configure RADIUS server shared secret, retransmission times, and accounting
option
[Router] radius shared-key this-is-my-secret
[Router] radius retry 2
[Router] aaa accounting-scheme optional
[Router] radius timer response-timeout 5
Accessing User
Authentication Case 2
129.7.66.66 acts as the first authentication and accounting server, port numbers
being 1000 and 1001 respectively.
129.7.66.67 acts as the second authentication and accounting server, port
numbers being 1812 and 1813 respectively.
Authenticate by the local database first, and if there is no response, use the
RADIUS server.
Charge all users in real time. The real-time accounting packet is sent at the interval
of 5 minutes.
See Figure 169.
1 Enable AAA and configure default authentication method list of PPP user.
[Router] aaa-enable
[Router] aaa authentication-scheme ppp default radius
2 Configure local-first authentication
[Router] aaa authentication-scheme local-first
Router2
Router1
Modem
Modem
ISDN\PSTN
Network to
be accessed
lqz lst
RADTUS authentication server
129.7.66.66
RADTUS accounting server
129.7.66.67
RADTUS authentication & accounting server
129.7.66.68