3Com Switch 8800 Configuration Guide
Chapter 40 AAA and RADIUS/ Protocol Con
figuration
40-22
By default, the default data unit is byte and the default data packet unit is one packet.
40.3.15 Creating/Deleting a Local RADIUS authentication Server
RADIUS service, which adopts authentication/authorization/accounting servers to
manage users, is widely used in the Switch 8800. Besides, local
authentication/authorization service is also used in these products and it is called local
RADIUS function, i.e. realize basic RADIUS function on the switch.
Perform the following configuration in system view.
Table 40-25
Creating/Deleting a local RADIUS authentication server
Operation
Command
Create a local RADIUS authentication
server
local-server nas-ip ip
-
address
key
password
Delete a local RADIUS authentication
server
undo local-server nas-ip ip
-
address
By default, the IP address of local RADIUS authentication server group is 127.0.0.1 and
the password is 3Com.
When using local RADIUS server function, note that,
1) The number of UDP port used for authentication/authorization is 1645 and that for
accounting is 1646.
2) The
password
configured by
local-server
command must be the same as that of
the RADIUS authentication/authorization packet configured by the command
key
authentication
in radius scheme view.
3) The Switch 8800 serving as a local RADIUS authentication server currently only
supports the CHAP and PAP authentication modes; they do not support the
MD5-challenge mode.
40.4 Configuring Protocol
The following sections describe configuration tasks.
z
Creating a HWTACAS Scheme
z