Radius authentication features in blade os – Blade ICE G8000 User Manual

RackSwitch G8000 Application Guide

28

„

Chapter 1: Accessing the Switch

BMD00041, November 2008

RADIUS authentication features in Blade OS

Blade OS supports the following RADIUS authentication features:

„

Supports RADIUS client on the switch, based on the protocol definitions in RFC 2138 and
RFC 2866.

„

Allows RADIUS secret password up to 32 bytes and less than 16 octets.

„

Supports secondary authentication server so that when the primary authentication server
is unreachable, the switch can send client authentication requests to the secondary authen-
tication server. Use the following command to show the currently active RADIUS authen-
tication server:

„

Supports user-configurable RADIUS server retry and time-out values:

†

Time-out value = 1-10 seconds

†

Retries = 1-3

The switch will time out if it does not receive a response from the RADIUS server in 1-3
retries. The switch will also automatically retry connecting to the RADIUS server before it
declares the server down.

„

Supports user-configurable RADIUS application port.
The default is 1812/UDP-based on RFC 2138. Port 1645 is also supported.

„

Allows network administrator to define privileges for one or more specific users to access
the switch at the RADIUS user database.

RS G8000 (config)#

show radius-server