Configuring the aaa client, Example 10-2 – Cisco 10000 User Manual

10-8

Cisco 10000 Series Router Software Configuration Guide

OL-2226-23

Chapter 10 Configuring Address Pools

On-Demand Address Pool Manager

Example 10-2 Configuring the DHCP Pool as an ODAP

!

ip dhcp pool green_pool

vrf Green

utilization mark high 60

utilization mark low 40

origin dhcp subnet size initial /24 autogrow /24

!

ip dhcp pool red_pool

vrf Red

origin dhcp

!

ip vrf Green

rd 200:1

route-target export 200:1

route-target import 200:1

!

ip vrf Red

rd 300:1

route-target export 300:1

route-target import 300:1

ip address-pool dhcp-pool

!

interface Virtual-Template1

ip vrf forwarding Green

ip unnumbered Loopback1

ppp authentication chap

!

interface Virtual-Template4

ip vrf forwarding Red

ip unnumbered Loopback2

ppp authentication chap

!

Configuring the AAA Client

To allow an ODAP to obtain subnets from the RADIUS server, enter the following commands in global
configuration mode. These commands configure the AAA client on the Cisco 10000 router:

Command

Purpose

Step 1

Router(config)# aaa new-model

Enables AAA access control.

Step 2

Router(config)# aaa authorization

configuration default group radius

Downloads static route configuration information from the AAA
server using RADIUS.

Step 3

Router(config)# aaa accounting network

default start-stop radius

or

Router(config)# aaa accounting network

default stop-only radius

Enables AAA accounting of requested services for billing or
security purposes when you use RADIUS. Sends a start
accounting notice at the beginning of a process.

Enables AAA accounting of requested services for billing or
security purposes when you use RADIUS. Sends a stop
accounting notice at the end of the requested user process.

Step 4

Router(config)# aaa session-id common

Ensures that the same session ID is used for each AAA accounting
service type within a call.