Filter
Top Products
184 Configuring authentication
Table 34
Configuring authentication methods (cont’d.)
/cfg/doamin #/aaa/auth #/radius
followed by:
domaintype <domain
type>
Specifies the Vendor-Type value used in
combination with the Vendor-Id to identify the
domain. The default is 3.
authproto pap|chapv2
Specifies the protocol used for communication
between the Nortel SNAS and the RADIUS
server. The options are:
•
pap—Password Authentication Protocol
(PAP)
•
chapv2—Challenge Handshake
Authentication Protocol (CHAP), version 2
The default is PAP.
timeout <interval> Sets the timeout interval for a connection
request to a RADIUS server. At the end of
the timeout period, if no connection has been
established, authentication will fail.
•
interval is an integer that indicates
the time interval in seconds (s), minutes
(m), or hours (h). If you do not specify a
measurement unit, seconds is assumed.
The range is 1–10000 seconds. The default
is 10 seconds.
sessiontim
Accesses the Session Timeout menu, in
order to configure settings to control the length
of client sessions (see “Configuring session
timeout” (page 186)).
Managing RADIUS authentication servers
You can configure additional RADIUS servers for the domain, for
redundancy. You can have a maximum of three RADIUS authentication
servers in the configuration. You can control the order in which the
RADIUS servers respond to authentication requests.
To enable RADIUS authentication, ensure that the authentication ID that
represents the RADIUS configuration is included in the authentication
order you have specified for the Nortel SNAS domain (see “Specifying
authentication fallback order” (page 209)).
Nortel Secure Network Access Switch
Using the Command Line Interface
NN47230-100 03.01 Standard
28 July 2008
Copyright © 2007, 2008 Nortel Networks
.