Nortel Networks 8000, 5399 Radius Security, Configure the Radius host Set the RAC’s Radius host

Page 24

Quick-Start Guide for Nortel Networks 5399 and 8000 Access Switches

RADIUS Security

With the RADIUS server up and running, find out the service ports that the RADIUS server is using. The service ports will usually be 1645/udp for authentication and 1646/udp for accounting. To set up RADIUS security:

1.Log on to the RAC as superuser and run admin. Enable security on the RAC by entering:

admin: set annex enable_security y

2.Configure the RADIUS host.

a.Set the RAC’s RADIUS host.

admin: set annex pref_secure1_host <ip addr of radius host>

b.Set the RAC’s service port for authentication on the RADIUS host. admin: set annex radius_auth1_port <1645 or 1812>

c.Set the RAC’s accounting host.

admin: set annex radius_acct1_host <ip addr of radius acct1 host>

d.Set the RAC’s service port for accounting on the RADIUS acct1 host. admin: set annex radius_acct1_port <1646 or 1813>

e.Set the authentication protocol on the RAC. admin: set annex auth_protocol radius

3.Enable the RADIUS client on the RAC. admin: set annex enable_radius_acct y

Note: The secret entries made in Steps 6 and 7 must be made in the clients file on the RADIUS server for the RAC with the same <secret>.

4.Set the secret authentication password that is shared between the RADIUS host and the RAC.

admin: set annex radius_auth1_secret <secret>

5.Set the secret accounting password that is shared between the RADIUS host and the RAC.

6.admin: set annex radius_acct1_secret <secret>

12

300855-C Rev. 00

Page 23 Page 25
Image 24
Page 23 Page 25
Contents Page Copyright 1999 Nortel Networks TrademarksRestricted Rights Legend Statement of ConditionsIii Rev.00 Contents Page Preface Before You BeginText Conventions Acronyms Related Publications How to Get Help Technical Solutions Center Telephone NumberPage Quick-Start Guide Quick-Start TasksQuick-Start Tasks Task 1 Site Preparation Order Line ProvisioningIP Addresses Task 2 Install RAC Software Task 3 Install the RACBoot Sequence Software ImageTask 4 RAC Configuration Enter r slot number to resetPress the space bar to enter monitor mode Set the Network Addresses Configure the Interface Sequence Set the Operating ImageAt the ROM monitor prompt, enter seq. The system responds Task 5 Boot the RAC Enable the allowsnmpsets ParameterTask 6 Configure the Switch Type Admin set wan=1 switchtype AT9Task 7 Set Switch Parameters Task 8 Configure SecurityACP Security Set the RAC’s ACP host Set vcli securityConfigure the Radius host Set the RAC’s Radius host Radius SecuritySet the RAC’s accounting host Reboot the RAC for the configuration changes to take effect PPP SetupSet PPP security protocol Task 9 Reboot the RAC Set up the RAC so that addresses are on the DS0sRoadmap Task 10 Customizing the RACInstalling and Configuring the RAC Task DocumentationTask Tools and Documentation Customizing the RAC Windows NTRAC Reference Documentation Quick-Start Guide
Top Page Image Contents