BLADEOS 6.5.2 Application Guide
BMD00220, October 2010 Chapter 4: Authentication & Authorization Protocols 67
RADIUS Authentication Features in BLADEOS
BLADEOS supports the following RADIUS authentication features:
Supports RADIUS client on the switch, based on the protocol definitions in RFC 2138 and
RFC 2866.
Allows RADIUS secret password up to 32 bytes and less than 16 octets.
Supports secondary authentication server so that when the primary authentication server is
unreachable, the switch can send client authentication requests to the secondary authentication
server. Use the following command to show the currently active RADIUS authentication
server:
Supports user-configurable RADIUS server retry and time-out values:
Time-out value = 1-10 seconds
Retries = 1-3
The switch will time out if it does not receive a response from the RADIUS server in 1-3
retries. The switch will also automatically retry connecting to the RADIUS server before it
declares the server down.
Supports user-configurable RADIUS application port.
The default is 1812/UDP-based on RFC 2138. Port 1645 is also supported.
Supports user-configurable RADIUS application port. The default is UDP port 1645. UDP port
1812, based on RFC 2138, is also supported.
Allows network administrator to define privileges for one or more specific users to access the
switch at the RADIUS user database.
RS G8124# show radius-server