Configuring the status of radius servers – H3C Technologies H3C WX3000 Series Unified Switches User Manual
Page 265
25-13
Configuring the Type of RADIUS Servers to be Supported
Follow these steps to configure the type of RADIUS servers to be supported:
To do…
Use the command…
Remarks
Enter system view
system-view
—
Create a RADIUS scheme and
enter its view
radius scheme
radius-scheme-name
Required
By default, a RADIUS scheme
named "system" has already been
created in the system.
Configure the type of RADIUS
servers to be supported
server-type
{ extended |
standard
}
Optional
When the third party RADIUS server is used, you can select standard or extended as the server-type
in a RADIUS scheme; when the CAMS server is used, you can select extended as the server-type in a
RADIUS scheme.
Configuring the Status of RADIUS Servers
For the primary and secondary servers (authentication/authorization servers, or accounting servers) in
a RADIUS scheme:
When the device fails to communicate with the primary server due to some server trouble, the device
will turn to the secondary server and exchange messages with the secondary server.
After the primary server remains in the block state for a set time (set by the timer quiet command), the
device will try to communicate with the primary server again when it receives a RADIUS request. If it
finds that the primary server has recovered, the device immediately restores the communication with
the primary server instead of communicating with the secondary server, and at the same time restores
the status of the primary server to active while keeping the status of the secondary server unchanged.
When both the primary and secondary servers are in active or block state, the device sends messages
only to the primary server.
Follow these steps to set the status of RADIUS servers:
To do…
Use the command…
Remarks
Enter system view
system-view
—
Create a RADIUS scheme and
enter its view
radius scheme
radius-scheme-name
Required
By default, a RADIUS scheme
named "system" has already been
created in the system.
Set the status of the primary
RADIUS
authentication/authorization server
state primary authentication
{ block | active }
Set the status of the primary
RADIUS accounting server
state primary accounting
{ block
| active }
Optional
By default, the primary RADIUS
servers in the default RADIUS
scheme "system" are in the active
state, the secondary servers in the