Authentication Commands
4-95
4
radius-server host
This command specifies primary and backup RADIUS servers and authentication
parameters that apply to each server. Use the no form to restore the default values.
Syntax
[no] radius-server index host {host_ip_address | host_alias}
[auth-port auth_port] [timeout timeout] [retransmit retransmit] [key key]
• index - Allows you to specify up to five servers. These servers are queried
in sequence until a server responds or the retransmit period expires.
• host_ip_address - IP address of server.
• host_alias - Symbolic name of server. (Maximum length: 20 characters)
• port_number - RADIUS server UDP port used for authentication messages.
(Range: 1-65535)
• timeout - Number of seconds the switch waits for a reply before resending
a request. (Range: 1-65535)
• retransmit - Number of times the switch will try to authenticate logon access
via the RADIUS server. (Range: 1-30)
• key - Encryption key used to authenticate logon access for client. Do not
use blank spaces in the string. (Maximum length: 20 characters)
Default Setting
• auth-port - 1812
• timeout - 5 seconds
• retransmit - 2
Command Mode
Global Configuration
Example
radius-server acct-port
This command sets the RADIUS server network port for accounting messages. Use
the no form to restore the default.
Syntax
radius-server acct-port port_number
no radius-server acct-port
port_number - RADIUS server UDP port used for accounting messages.
(Range: 1-65535)
Default Setting
1813
Console(config)#radius-server 1 host 192.168.1.20 auth-port 181 timeout
10 retransmit 5 key green
Console(config)#