Riverstone Networks WICT1-12 User Manual

Page 548

Advertising
background image

25-2 Riverstone Networks RS Switch Router User Guide Release 8.0

Configuring RS Access Security

Security Configuration

You can configure up to five RADIUS server targets on the RS. A timeout is set to tell the RS how long to wait for a
response from RADIUS servers.

Note

Verify parameter values before saving radius commands to the active or startup
configuration file on the RS. Any misconfiguration can effectively lock you out of
the CLI.

To configure RADIUS security, enter the following commands in Configure mode:

Monitoring RADIUS

You can monitor RADIUS configuration and statistics within the RS.

Specify a RADIUS server and configure
server-specific parameters.

radius set server

<IP-addr>

<server-options>

Set time that RADIUS server is ignored after it has
failed.

radius set deadtime

<minutes>

Set authentication key for RADIUS server.

radius set key

<string>

Determine the RS action if there is no server response
within a given time.

a

a.

If this command is not specified, the RS tries the next configured authentication method (including TACACS+ configura-

tion commands). Otherwise, if the server does not reply within the configured timeout period for the configured number of re-
tries, user authentication will fail.

radius set last-resort

password|succeed|deny

Set the maximum number of times the RADIUS server
is contacted for authentication.

radius set retries

<number>

Set the source IP address or interface for use with
RADIUS server.

radius set source

<ipaddr>

|

<interface>

Set the maximum time to wait for a RADIUS server
reply.

radius set timeout

<seconds>

Enable RADIUS.

radius enable

Cause RADIUS authentication at user login or when
user tries to access Enable mode.

radius authentication login|enable

Logs specified types of command to RADIUS server.

radius accounting command level

<

OHYHO>

Logs to RADIUS server when shell is stopped or
started on RS.

radius accounting shell start|stop|all

Logs to RADIUS server SNMP changes to startup or
active configuration.

radius accounting snmp active|startup

Logs specified type(s) of messages to RADIUS server.

radius accounting system

fatal|error|warning|info

Advertising
Popular Brands
Popular manuals