Filter
Top Products
RADIUS Commands 653
33
RADIUS Commands
Managing and determining the validity of users in a large network can be
significantly simplified by making use of a single database of accessible
information supplied by an Authentication Server. These servers commonly
use the Remote Authentication Dial In User Service (RADIUS) protocol as
defined by RFC 2865.
RADIUS permits access to a user’s authentication and configuration
information contained on the server only when requests are received from a
client that shares an encrypted secret with the server. This secret is never
transmitted over the network in an attempt to maintain a secure
environment. Any requests from clients that are not appropriately configured
with the secret or access from unauthorized devices are silently discarded by
the server.
RADIUS conforms to a client/server model with secure communications
using UDP as a transport protocol. It is extremely flexible, supporting a
variety of methods to authenticate and statistically track users. It is very
extensible allowing for new methods of authentication to be added without
disrupting existing network functionality.
PowerConnect supports a RADIUS client in conformance with RFC 2865 and
accounting functions in conformance with RFC2866. The RADIUS client
will apply user policies under control of the RADIUS server, e.g. password
lockout or login time of day restrictions. The RADIUS client supports up to
32 named authentication and accounting servers.
Commands in this Chapter
This chapter explains the following commands:
aaa accounting network
default start-stop group
radius
primary radius-server timeout
acct-port priority retransmit
2CSPC4.XModular-SWUM200.book Page 653 Thursday, March 10, 2011 11:18 AM