Radius configuration, Radius overview, Configuring radius – H3C Technologies H3C WX3000E Series Wireless Switches User Manual
Page 364: Recommended configuration procedure, Radius, Configuration
351
RADIUS configuration
RADIUS overview
The Remote Authentication Dial-In User Service (RADIUS) protocol implements Authentication,
Authorization, and Accounting (AAA).
RADIUS uses the client/server model. It can protect networks against unauthorized access and is often
used in network environments where both high security and remote user access are required. RADIUS
defines the packet format and message transfer mechanism, and uses UDP as the transport layer protocol
for encapsulating RADIUS packets. It uses UDP port 1812 for authentication and UDP port 1813 for
accounting.
RADIUS was originally designed for dial-in user access. With the addition of new access methods,
RADIUS has been extended to support additional access methods, for example, Ethernet and ADSL.
RADIUS provides access authentication and authorization services, and its accounting function collects
and records network resource usage information.
NOTE:
For more information about RADIUS and AAA, see
H3C WX3000E Series Wireless Switches Switching
Engine Configuration Guide.
Configuring RADIUS
NOTE:
•
The RADIUS scheme configured through the Web interface is named system.
•
If there is no RADIUS scheme named system in the system, when you select Authentication > RADIUS
to enter the RADIUS module, a scheme named system will be created automatically.
Recommended configuration procedure
Step
Description
1.
Configuring
RADIUS
authentication
servers
Required
Configure the information related to the primary and secondary
RADIUS authentication servers.
By default, no RADIUS authentication server is configured.
See
.
2.
Configuring
RADIUS
accounting servers
Optional
Configure the information related to the primary and secondary
RADIUS accounting servers.
By default, no RADIUS accounting server is configured.