Support User Manuals

Dell S50V Switch User Manual

Open as PDF

of 1262

Security | 929

Apply the method list to terminal lines

To enable RADIUS AAA login authentication for a method list, you must apply it to a terminal line. To

configure a terminal line for RADIUS authentication and authorization, enter the following commands:

Specify a RADIUS server host

When configuring a RADIUS server host, you can set different communication parameters, such as the

UDP port, the key password, the number of retries, and the timeout.

To specify a RADIUS server host and configure its communication parameters, use the following

command in the CONFIGURATION mode:

aaa authorization exec

{method-list-name | default} radius

tacacs+

CONFIGURATION Create methodlist with RADIUS and TACACS+ as

authorization methods. Typical order of methods:

RADIUS, TACACS+, Local, None. If authorization is

denied by RADIUS, the session ends (radius should not

be the last method specified).

Command Syntax Command Mode Purpose

line {aux 0 | console 0 | vty number

[end-number]}

CONFIGURATION Enter the LINE mode.

login authentication {method-list-name |

default}

LINE Enable AAA login authentication for the specified

RADIUS method list. This procedure is mandatory if

you are not using default lists.

authorization exec methodlist CONFIGURATION To use the methodlist.

Command Syntax Command Mode Purpose

radius-server host {hostname |

ipv4-address | ipv6-address}

[auth-port port-number] [retransmit

retries] [timeout seconds] [key

[encryption-type] key]

CONFIGURATION Enter the host name or IP address of the RADIUS server

host. Configure the optional communication parameters

for the specific host:

• auth-port port-number range: 0 to 65335. Enter a

UDP port number. The default is 1812.

• retransmit retries range: 0 to 100. Default is 3.

• timeout seconds range: 0 to 1000. Default is 5

seconds.

• key [encryption-type] key: Enter 0 for plain text or 7

for encrypted text, and a string for the key. The key

can be up to 42 characters long. This key must match

the key configured on the RADIUS server host.

If these optional parameters are not configured, the

global default values for all RADIUS host are applied.

Command Syntax Command Mode Purpose

previous next