Configuring AAA and RADIUS 541

Configure the Request Retransmission Times

If the RADIUS server fails to respond, the router sends the authentication request packet again periodically. If no RADIUS server response is received after the configured value of timeout, the authentication request packet needs to be transmitted again. The user can set the maximum number of times for the request retransmission, when the number of request retransmission exceed it, the system will consider the server fails to work normally and set it to dead.

Table 614 Configure the Times of Request Retransmission

Operation

Command

 

 

Configure the times of request

radius retry times

retransmission

 

 

 

Restore default value of times of request

undo radius retry

retransmission

 

 

 

By default, the times of request retransmission are three and the number ranges from 1 to 255.

Configure the Time Interval at Which the Inquiry Packet is Sent

After the first RADIUS server breaks down (due to line failure between NAS and the server or RADIUS process failure, the system sets this server to "dead", and periodically queries whether it can work normally or not. If the server is found to work normally, then after the currently used server breaks down, the system will automatically uses the first one.

Table 615 Configure the Time Interval for the Inquiry Packet

Operation

Command

 

 

Configure the time interval at which the

radius timer quiet minutes

inquiry packet is sent after RADIUS server

 

breaks down

 

 

 

Restore default value of time interval at

undo radius timer quiet

which the inquiry packet is sent

 

 

 

By default, the inquiry packet is sent at intervals of 5 minutes after the RADIUS server fails, and the interval ranges from 1 to 255 minutes.

Configure the Time Interval at Which the Real-Time Accounting Packet is Sent to the RADIUS Server

After a user passes authentication, NAS sends the user's real-time accounting information to the RADIUS server periodically. If the real-time accounting request fails, the user is handled according to the aaa accounting-scheme optional command. If the aaa accounting-scheme optional command has been configured, the user can continue to use the network services, otherwise, NAS disconnects the user.

Usually, the server sends the accounting packet only according to the access time and disconnection time. But for higher reliability, the time interval at which the real-time accounting packet is sent to the RADIUS server can be configured.

Table 616 Configure the Time Interval

Operation

Command

 

 

Page 545
Image 545
3Com 10014299 manual Configure the Request Retransmission Times, Configure the Time Interval for the Inquiry Packet