3Com 5500-SI Switch User Manual

Open as PDF

of 686

User Re-authentication at Reboot 433

2 Method 2: Using Local RADIUS authentication server.

Local server method is similar to remote RADIUS authentication. But you should

modify the server IP address to 127.0.0.1, authentication password to 3com, the UDP

port number of the authentication server to 1645.

Configuring the Switch

5500

General RADIUS setup

The Switch 5500 supports multiple RADIUS schemes, which can be assigned to a

domain.

This guide covers the recommended steps to setup the Switch5500 for login.

Domain and RADIUS scheme creation

The Switch 5500 can have 1 or more domains created on it. A domain on the Switch

5500 is similar to a windows domain. By default, there is one domain created called

"system". This uses the local scheme to validate users. The information about the

local domain can be seen by typing "display domain". For example:

<SW5500>display domain

0 Domain = system

State = Active

Scheme = LOCAL

Access-limit = Disable

Domain User Template:

Idle-cut = Disable

Self-service = Disable

Messenger Time = Disable

This system domain uses the local scheme.

It is not recommended that you change the system domain, as it could result in

locking all users out of the switch. This could happen if you change the default local

scheme to use an external RADIUS server, which is unavailable.

1 A new RADIUS scheme should be created as follows:

[SW5500]radius scheme NewSchemeName

New Radius scheme

[SW5500-radius-NewSchemeName]

2 Next, we need to add the attributes of the RADIUS scheme. This involves configuring

the RADIUS server IP address and shared secret.

[SW5500-radius-NewSchemeName]key authentication mysharedsecret

[SW5500-radius-NewSchemeName]primary authentication 161.71.67.250

3 The RADIUS scheme will not become active unless an accounting server is also

defined. If you don't have an accounting server, then the RADIUS scheme needs to

have accounting set to "optional".

[SW5500-radius-NewSchemeName]accounting optional

4 Next, create a new domain as follows:

[SW5500]domain Demo

New Domain added.

[SW5500-isp-Demo]

5 Change the domain to use the new RADIUS scheme that you have configured:

[SW5500-isp-demo]radius-scheme NewSchemeName

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

3Com 5500-SI Switch User Manual