Configuring radius accounting-on – H3C Technologies H3C S5120 Series Switches User Manual

1-26

To do…

Use the command…

Remarks

Set the quiet timer for the
primary server

timer quiet minutes

Optional

5 minutes by default

Set the real-time accounting
interval

timer realtime-accounting
minutes

Optional

12 minutes by default

z

The maximum number of retransmission attempts of RADIUS packets multiplied by the RADIUS

server response timeout period cannot be greater than 75. This product is also the upper limit of the

timeout time of different access modules.

z

For an access module, the maximum number of retransmission attempts multiplied by the RADIUS

server response timeout period must be smaller than the timeout time. Otherwise, stop-accounting

messages cannot be buffered, and the primary/secondary server switchover cannot take place.

For example, as the timeout time of voice access is 10 seconds, the product of the two parameters

cannot exceed 10 seconds; as the timeout time of Telnet access is 30 seconds, the product of the

two parameters cannot exceed 30 seconds.

z

To configure the maximum number of retransmission attempts of RADIUS packets, refer to the

command retry in the command manual.

Configuring RADIUS Accounting-On

With the accounting-on feature enabled, a device sends, whenever it reboots, accounting-on packets to

the RADIUS server, so that the server logs out users that have logged in through the device before the

reboot. This solves the problem that users online before the reboot cannot re-log in after the reboot.

Once configured, the accounting-on feature functions immediately after the device restarts and

recovers its configurations. The feature functions by sending and retransmitting accounting-on requests

and dealing with accounting-on responses, and the device provides AAA services only after the

accounting-on feature completes its tasks. When the RADIUS servers of many RADIUS schemes (up to

16 schemes can be configured at present) are unavailable, the number of accounting-on packet

retransmission attempts is too big, or the retransmission interval of accounting-on packets is too long,

the accounting-on feature may take a long time, affecting user access negatively.

Follow these steps to configure accounting-on feature of a RADIUS server:

To do…

Use the command…

Remarks

Enter system view

system-view

—

Enter RADIUS scheme view

radius scheme
radius-scheme-name

—

Enable accounting-on

accounting-on enable

Required

Disabled by default

Set the number of
accounting-on packet
retransmission attempts

accounting-on enable send
send-times

Optional

5 times by default