Operation Manual – AAA-RADIUS-HWTACACS
H3C S3610&S5510 Series Ethernet Switches
Chapter 1 AAA/RADIUS/HWTACACS
Configuration
1-24
To do…
Use the command…
Remarks
Enter system view
system-view
—
Create a RADIUS scheme
and enter RADIUS
scheme view
radius scheme
radius-scheme-name
Required
Not defined by default
Configure the IP address
and UDP port of the
primary RADIUS
authentication/authorizati
on server
primary authentication
ip-address
[
port-number
]
Required
The defaults are as
follows:
0.0.0.0 for the IP address,
and
1812 for the port.
Configure the IP address
and UDP port of the
secondary RADIUS
authentication/authorizati
on server
secondary
authentication
ip-address
[
port-number
]
Optional
The defaults are as
follows:
0.0.0.0 for the IP address,
and
1812 for the port.
Note:
z
In practice, you may specify two RADIUS servers as the primary and secondary
authentication/authorization servers respectively. At a moment, a server can be the
primary authentication/authorization server for a scheme and the secondary
authentication/authorization servers for another scheme.
z
The IP addresses of the primary and secondary authentication/authorization
servers for a scheme cannot be the same. Otherwise, the configuration fails.
1.4.3 Configuring the RADIUS Accounting Servers and Relevant Parameters
Follow these steps to specify the RADIUS accounting servers and perform related
configurations:
To do…
Use the command…
Remarks
Enter system view
system-view
—
Create a RADIUS scheme
and enter RADIUS
scheme view
radius scheme
radius-scheme-name
Required
Not defined by default