S e n d f e e d b a c k t o n x 5 0 0 0 - d o c f e e d b a c k @ c i s c o . c o m
17-7
Cisco Nexus 5000 Series Switch CLI Software Configuration Guide
OL-16597-01
Chapter 17 Configuring RADIUS
Configuring RADIUS Servers
:
The following example shows how to configure a preshared keys for a RADIUS server:
switch#
configure terminal
switch(config)#
radius-server host 10.10.1.1 key 0 PlIjUhYg
switch(config)#
exit
switch#
show radius-server
switch#
copy running-config startup-config
Configuring RADIUS Server Groups
You can specify one or more remote AAA servers for authentication using server groups. All members
of a group must belong to the RADIUS protocol. The servers are tried in the same order in which you
configure them.
You can configure these server groups at any time but they only take effect when you apply them to an
AAA service. For information on AAA services, see the
“Remote AAA Services” section on page 16-2
.
To configure radius server groups, perform this task:
:
Command
Purpose
Step 1
switch#
configure terminal
Enters configuration mode.
Step 2
switch(config)#
radius-server host
{
ipv4-address
|
ipv6-address
|
host-name
}
key
[
0
|
7
]
key-value
Specifies a preshared key for a specific RADIUS
server. You can specify a clear text (
0
) or encrypted (
7
)
preshared key. The default format is clear text. The
maximum length is 63 characters.
This preshared key is used instead of the global
preshared key.
Step 3
switch(config)#
exit
Exits configuration mode.
Step 4
switch#
show radius-server
(Optional) Displays the RADIUS server configuration.
Note
The preshared keys are saved in encrypted
form in the running configuration. Use the
show running-config
command to display the
encrypted preshared keys.
Step 5
switch#
copy running-config
startup-config
(Optional) Copies the running configuration to the
startup configuration.
Command
Purpose
Step 1
switch#
configure terminal
Enters configuration mode.
Step 2
switch(config)#
aaa group server radius
group-name
Creates a RADIUS server group and enters the
RADIUS server group configuration submode for that
group. The
group-name
argument is a case-sensitive
alphanumeric string with a maximum length of 127
characters.
Summary of Contents for N5010P-N2K-BE
Page 50: ...Se n d f e e d b a ck t o n x 5 0 0 0 d o c f e e d b a ck c i s c o c o m ...
Page 102: ...Se n d f e e d b a ck t o n x 5 0 0 0 d o c f e e d b a ck c i s c o c o m ...
Page 240: ...Se n d f e e d b a ck t o n x 5 0 0 0 d o c f e e d b a ck c i s c o c o m ...
Page 312: ...Se n d f e e d b a ck t o n x 5 0 0 0 d o c f e e d b a ck c i s c o c o m ...
Page 400: ...Se n d f e e d b a ck t o n x 5 0 0 0 d o c f e e d b a ck c i s c o c o m ...
Page 418: ...Se n d f e e d b a ck t o n x 5 0 0 0 d o c f e e d b a ck c i s c o c o m ...
Page 436: ...Se n d f e e d b a ck t o n x 5 0 0 0 d o c f e e d b a ck c i s c o c o m ...
Page 658: ...Se n d f e e d b a ck t o n x 5 0 0 0 d o c f e e d b a ck c i s c o c o m ...