416CHAPTER 14: RADIUS AND SERVER GROUP COMMANDS

(24 hours). A zero value causes the switch to identify unresponsive servers as available.

„key string — Password (shared secret key) the WX switch uses to authenticate to the RADIUS server. You must provide the same password that is defined on the RADIUS server. The password can be

1to 32 characters long, with no spaces or tabs.

„author-passwordpassword — Password used for authorization to a RADIUS server for MAC users. Specify a password of up to

32alphanumeric characters with no spaces or tabs.

Defaults — Default values are listed below:

„auth-port— UDP port 1812

„acct-port— UDP port 1813

„timeout — 5 seconds

„retransmit — 3 (the total number of attempts, including the first attempt)

„deadtime — 0 (zero) minutes (The WX switch does not designate unresponsive RADIUS servers as unavailable.)

„key — No key

„author-password— When using RADIUS for authentication, a MAC user’s MAC address is also used as the default authorization password for that user, and no global authorization password is set. A last-resort user’s default authorization password is 3Com.

Access — Enabled.

History —Introduced in MSS Version 3.0.

Usage — For a given RADIUS server, the first instance of this command must set both the server name and the IP address and can include any or all of the other optional parameters. Subsequent instances of this command can be used to set optional parameters for a given RADIUS server.

To configure the server as a remote authenticator for the WX switch, you must add it to a server group with the set server group command.

Do not use the same name for a RADIUS server and a RADIUS server group.

Page 416
Image 416
3Com 3CRWX440095A, 3CRWX120695A manual Radius and Server Group Commands