Filter
Top Products
276 CHAPTER 11: USING AAA AND RADIUS COMMANDS
Example 2:
To set the accounting packet key of the RADIUS scheme to “ok”, enter the
following:
[4500-radius]key accounting ok
local-server Syntax
local-server nas-ip ip-address key string
undo local-server nas-ip ip-address
View
System View
Parameter
nas-ip ip-address: set NAS-IP address of access server. ip-address is expressed
in the format of dotted decimal. By default, there is a local server with the NAS-IP
address of 127.0.0.1.
key string: Set the shared key, string is a character string containing up to 16
characters.
Description
Use the local-server command to configure the parameters of local RADIUS
server. Use the
undo local-server command to cancel a local RADIUS server.
RADIUS service, which adopts authentication/authorization/accounting servers to
manage users, is widely used in the Switch 4500. Besides, local
authentication/authorization service is also used in these products and it is called
local RADIUS function, that is, realize basic RADIUS function on the Switch.
When using local RADIUS server function, remember the number of the UDP port
used for authentication is 1645 and that for accounting is 1646.
The key configured by this command must be the same as that of the RADIUS
authentication/authorization packet configured by the command key
authentication
in the RADIUS Scheme View.
The Switch 4500 Series supports up to 16 local RADIUS authentication servers.
Related commands: radius scheme, state and key.
Example
To set the IP address of local RADIUS authentication server to 10.110.1.2 and the
password to 3Com, enter the following:
<4500>system-view
System View: return to User View with Ctrl+Z.
[4500]local-server nas-ip 10.110.1.2 key 3Com
nas-ip Syntax
nas-ip ip-address