DGS-3000 Series Layer 2 Managed Gigabit Ethernet Switch CLI Reference Guide
74
create authen server_host
5-22
Description
This command is used to create an authentication server host. When an authentication server host
is created, IP address and protocol are the index. That means over 1 authentication protocol
services can be run on the same physical host. The maximum supported number of server hosts is
16.
Format
create authen server_host [<ipaddr> | ipv6 <ipv6addr>] protocol [tacacs | xtacacs | |
radius] {port <int 1-65535> | [key [<key_string 254> | none] | encryption_key <key_string
344>] | timeout <int 1-255> | retransmit <int 1-20>}
Parameters
<ipaddr>
- Enter the server host IP address.
ipv6
- Specify the server host IPv6 address.
<ipv6addr>
- Enter the server host IPv6 address.
protocol
- Specify the host's authentication protocol.
tacacs
- Server host’s authentication protocol.
xtacacs
- Server host’s authentication protocol.
- Server host’s authentication protocol.
radius
- Server host’s authentication protocol.
port
- (Optional) The port number of authentication protocol for server host. Default value for
TACACS/XTACACS/ is 49. Default value for RADIUS is 1812.
<int 1-65535>
- Enter the authentication protocol port number here. This value must be
between 1 and 65535.
key
- (Optional) The key for and RADIUS authentication. If the value is null, no
encryption will apply. This value is meaningless for TACACS and XTACACS.
<key_string 254>
- Enter the or the RADIUS key here. This key can be up to 254
characters long.
none
- No encryption for and RADIUS authentication. This value is meaningless
for TACACS and XTACACS.
encryption_key
- (Optional) Specify the encrypted form key string for and RADIUS
authentication. This value is meaningless for TACACS and XTACACS. The encryption
algorithm is based on DES.
<key_string 344>
- Enter the encrypted form key string for and RADIUS
authentication.
timeout
- (Optional) The time in second for waiting server reply. Default value is 5 seconds.
<int 1-255>
- Enter the timeout value here. This value must be between 1 and 255 seconds.
retransmit
- (Optional) The count for re-transmit. This value is meaningless for .
Default value is 2.
<int 1-20>
- Enter the re-transmit value here. This value must be between 1 and 20.
Restrictions
Only Administrators can issue this command.
Example
To create a authentication server host, its listening port number is 15555 and timeout
value is 10 seconds:
Summary of Contents for DGS-3000 series
Page 1: ......