64
RackSwitch G8000: Application Guide
Configuring RADIUS on the Switch
Use the following procedure to configure Radius authentication on your switch.
1. Configure the IPv4 addresses of the Primary and Secondary RADIUS servers,
and enable RADIUS authentication.
Note:
You can use a configured loopback address as the source address so the
RADIUS server accepts requests only from the expected loopback address
block. Use the following command to specify the loopback interface:
RS G8000(config)#
ip radius source-interface loopback
<1-5>
2. Configure the RADIUS secret.
3. If desired, you may change the default UDP port number used to listen to
RADIUS.
The well-known port for RADIUS is 1812.
4. Configure the number retry attempts for contacting the RADIUS server, and the
timeout period.
RADIUS Authentication Features in IBM N/OS
N/OS supports the following RADIUS authentication features:
•
Supports RADIUS client on the switch, based on the protocol definitions in RFC
2138 and RFC 2866.
•
Allows RADIUS secret password up to 32 bytes and less than 16 octets.
•
Supports
secondary authentication server
so that when the primary
authentication server is unreachable, the switch can send client authentication
requests to the secondary authentication server. Use the following command to
show the currently active RADIUS authentication server:
•
Supports user-configurable RADIUS server retry and time-out values:
– Time-out value = 1-10 seconds
– Retries = 1-3
The switch will time out if it does not receive a response from the RADIUS server
in 1-3 retries. The switch will also automatically retry connecting to the RADIUS
server before it declares the server down.
RS G8000(config)#
radius-server primary-host 10.10.1.1
RS G8000(config)#
radius-server secondary-host 10.10.1.2
RS G8000(config)#
radius-server enable
RS G8000(config)#
radius-server primary-host 10.10.1.1 key
<1-32 character secret>
RS G8000(config)#
radius-server secondary-host 10.10.1.2 key
<1-32 character secret>
RS G8000(config)#
radius-server port
<UDP port number>
RS G8000(config)#
radius-server retransmit 3
RS G8000(config)#
radius-server timeout 5
RS G8000#
show radius-server
Содержание RackSwitch G8000
Страница 1: ...RackSwitch G8000 Application Guide...
Страница 2: ......
Страница 3: ...RackSwitch G8000 Application Guide...
Страница 16: ...16 RackSwitch G8000 Application Guide...
Страница 22: ...20 RackSwitch G8000 Application Guide...
Страница 23: ...Copyright IBM Corp 2011 21 Part 1 Getting Started...
Страница 24: ...22 RackSwitch G8000 Application Guide...
Страница 54: ...52 RackSwitch G8000 Application Guide...
Страница 55: ...Copyright IBM Corp 2011 53 Part 2 Securing the Switch...
Страница 56: ...54 RackSwitch G8000 Application Guide...
Страница 92: ...90 RackSwitch G8000 Application Guide...
Страница 94: ...92 RackSwitch G8000 Application Guide...
Страница 144: ...142 RackSwitch G8000 Application Guide...
Страница 145: ...Copyright IBM Corp 2011 143 Part 4 Advanced Switch ing Features...
Страница 146: ...144 RackSwitch G8000 Application Guide...
Страница 148: ...146 RackSwitch G8000 Application Guide...
Страница 182: ...180 RackSwitch G8000 Application Guide...
Страница 184: ...182 RackSwitch G8000 Application Guide...
Страница 212: ...210 RackSwitch G8000 Application Guide...
Страница 258: ...256 RackSwitch G8000 Application Guide...
Страница 286: ...284 RackSwitch G8000 Application Guide...
Страница 294: ...292 RackSwitch G8000 Application Guide...
Страница 298: ...296 RackSwitch G8000 Application Guide...
Страница 310: ...308 RackSwitch G8000 Application Guide...
Страница 311: ...Copyright IBM Corp 2011 309 Part 7 Network Management...
Страница 312: ...310 RackSwitch G8000 Application Guide...
Страница 320: ...318 RackSwitch G8000 Application Guide...
Страница 332: ...330 RackSwitch G8000 Application Guide...
Страница 334: ...332 RackSwitch G8000 Application Guide...
Страница 345: ...Copyright IBM Corp 2011 343 Part 9 Appendices...
Страница 346: ...344 RackSwitch G8000 Application Guide...
Страница 357: ...Copyright IBM Corp 2011 Appendix C Notices 355 Taiwan Class A compliance statement...
Страница 358: ...356 RackSwitch G8000 Application Guide...