Cisco Systems XR manual Deadtime server-group configuration, Deadtime minutes no deadtime, SR-21

Page 21

Authentication, Authorization, and Accounting Commands on Cisco IOS XR Software

deadtime (server-group configuration)

deadtime (server-group configuration)

To configure the deadtime value at the RADIUS server group level, use the deadtime command in server-group configuration mode. To set deadtime to 0, use the no form of this command.

deadtime minutes no deadtime

Syntax Description

minutes

Length of time, in minutes, for which a RADIUS server is skipped over by

 

 

transaction requests, up to a maximum of 1440 (24 hours). The range is

 

 

from 1 to 1440.

 

 

 

Defaults

Command Modes

Command History

Usage Guidelines

Deadtime is set to 0.

Server-group configuration

ReleaseModification

Release 3.3.0

This command was introduced on the Cisco CRS-1 and

 

Cisco XR 12000 Series Router.

 

 

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

The value of the deadtime set in the server groups overrides the deadtime that is configured globally. If the deadtime is omitted from the server group configuration, the value is inherited from the master list. If the server group is not configured, the default value of 0 applies to all servers in the group. If the deadtime is set to 0, no servers are marked dead.

Task ID

 

Task ID

Operations

 

 

aaa

read, write

 

 

 

 

 

 

 

Examples

 

The following example specifies a one-minute deadtime for RADIUS server group group1 when it has

 

 

failed to respond to authentication requests for the deadtime command:

RP/0/RP0/CPU0:router# configure RP/0/RP0/CPU0:router(config)# aaa group server radius group1 RP/0/RP0/CPU0:router(config-sg-radius)# server 1.1.1.1 auth-port 1645 acct-port 1646 RP/0/RP0/CPU0:router(config-sg-radius)# server 2.2.2.2 auth-port 2000 acct-port 2001 RP/0/RP0/CPU0:router(config-sg-radius)# deadtime 1

Cisco IOS XR System Security Command Reference

SR-21

Page 20 Page 22
Image 21
Page 20 Page 22
Contents SR-1 SR-2 Aaa accountingCreates a method list to be used for authorization Aaa Read, writeSR-3 SR-4 Aaa accounting system defaultCreates a method list for authentication Creates a method list for authorizationSR-5 SR-6 Aaa authenticationRadius, group named-group,local, or line options Creates a method list for accountingSR-7 SR-8 Command DescriptionNetwork Aaa authorizationLocal SR-9SR-10 SR-11 Which specifies that TACACS+ authorization is usedSR-12 Aaa default-taskgroupSR-13 Aaa group server radiusSR-14 Comprises three member serversSR-15 Aaa group server tacacs+SR-16 Aaa accounting command AccountingSR-17 SR-18 List named listname2 on a line template named configureAuthorization Authorization commandSR-19 SR-20 Listname4 on a line template named configureDeadtime server-group configuration Deadtime minutes no deadtimeSR-21 SR-22 Related Commands DescriptionDescription AAA Description string No descriptionSR-23 SR-24 TaskgroupSR-25 GroupSR-26 Task ID ExamplesSR-27 Inherit taskgroupSR-28 Inherit usergroup Inherit usergroup usergroup-nameSR-29 SR-30 Sales user groupLogin authentication Authentication login commandSR-31 SR-32 Password AAA Password 0 7 password No password 0 7 passwordSR-33 SR-34 SR-35 Radius-server dead-criteria timeSR-36 SR-37 Radius-server dead-criteria triesSR-38 Dead-criteria timeRadius-server deadtime Radius-server deadtime minutes No radius-server deadtimeSR-39 SR-40 Radius-server host Timeout secondsRetransmit retries SR-41SR-42 SR-43 SR-44 Radius-server keySR-45 Specifies a Radius server hostSR-46 Radius-server retransmitRadius-server timeout Radius-server timeout seconds No radius-server timeoutSR-47 SR-48 Radius source-interfaceSR-49 Outgoing Radius packetsSecret Secret 0 5 secret no secret 0 5 secretSR-50 SR-51 SR-52 Server RadiusSR-53 SR-54 Server TACACS+SR-55 Groups different TACACS+ server hosts into distinct listsSR-56 Show aaaAaa usergroup operator SR-57SR-58 SR-59 Displays task IDs enabled for the currently logged-in userShow radius If no radius servers are configured, no output is displayedShow radius SR-60SR-61 Field DescriptionShow radius accounting Show radius accountingSR-62 SR-63 Show radius authenticationShow radius authentication Show radius authenticationSR-64 SR-65 Show radius accountingShow radius client Show radius clientSR-66 SR-67 SR-68 Show radius dead-criteriaSR-69 Show radius server-groups No default behavior or valuesShow radius server-groups SR-70SR-71 Field DescriptionShow tacacs Show tacacsSR-72 SR-73 Show tacacs server-groups Show tacacs server-groupsSR-74 SR-75 Show task supported Show task supportedSR-76 Ouni pkg-mgmt pos-dpt ppp SR-77SR-78 Show userUser all SR-79SR-80 SR-81 SR-82 Tacacs-server hostSR-83 Tacacs-server key Tacacs-server key key-nameno tacacs-server keySR-84 SR-85 Specifies a TACACS+ hostTacacs-server timeout Tacacs-server timeout seconds No tacacs-server timeoutSR-86 SR-87 Tacacs source-interfaceSR-88 Aaa group server radiusWrite TaskExecute DebugSR-90 SR-91 TaskgroupCreates a task group description in task configuration mode Adds a task ID to a task groupSR-92 SR-93 Timeout login responseSR-94 Enables AAA authentication for loginsSR-95 UsergroupSR-96 Creates a description of a task group during configurationSR-97 UsernameCreates a login password for a user Defines a method list for authenticationAdds a user to a group SR-98SR-99 Users groupSR-100 Given operator privileges
Top Page Image Contents