Support User Manuals

Cisco Systems 10000 Network Router User Manual

Open as PDF

of 624

16-20

Cisco 10000 Series Router Software Configuration Guide

OL-2226-23

Chapter 16 Configuring RADIUS Features

RADIUS Packet of Disconnect

Configuring AAA POD Server

To configure the Calling-Station-ID format, perform the following task in global configuration mode:

Verifying AAA POD Server

To verify that the router is configured correctly to performs an AAA POD server, enter the

show

running-configuration command in privileged EXEC mode to display the command settings for

the router.

Router# show running-configuration

!

aaa new-model

aaa authentication ppp default group radius

aaa authorization network default group radius

aaa accounting network default start-stop group radius

aaa pod server clients <ip address> port <port number> auth-type [all/ any/ session-key]

server-key cisco

Command Purpose

Router(config)# aaa pod server clients [client ip

address] port [port-number] [auth-type {any| all|

session-key}] [ignore {session-key | server-key}]

server-key string

Enables inbound user sessions to be disconnected when specific

session attributes are presented.

client ip-address—(Optional) Registers the IP address of all the

clients who can send POD requests. If not set, it can receive a

POD request from any

client.

port-number—(Optional) The network access server User Data-

gram Protocol (UDP) port to use for POD requests. Default

value is 1700.

auth-type—(Optional) The type of

authorization required for disconnecting sessions.

• any—Session that matches all of the attributes sent in the

POD packet is disconnected. The POD packet may contain

one or more of four key attributes (user-name,

framed-IP-address, session-ID, and

session-key).

• all—Only a session that matches all four key attributes is

disconnected. All is the default.

• session-key—Session with a matching session-key attribute

is disconnected. All other attributes are ignored.

ignore—(Optional) Ignore the session key or the server key

received in the POD packet for session matching.

server-key—Configures the shared-secret text string.

• string—The shared-secret text string that is shared between

the network access server and the client workstation. This

shared-secret string must be the same on both systems.

previous next