3Com 5500G, 4210, 4200G manual 3Com-isp-aabbcc.net scheme radius-scheme radius1

56CHAPTER 9: PORT SECURITY CONFIGURATION GUIDE

#Create a RADIUS scheme named radius1.

<3Com> system-view

[3Com] radius scheme radius1

#Specify the primary RADIUS authentication server and primary RADIUS accounting server.

[3Com-radius-radius1] primary authentication 192.168.1.3

[3Com-radius-radius1] primary accounting 192.168.1.2

#Specify the secondary RADIUS authentication server and secondary RADIUS accounting server.

[3Com-radius-radius1] secondary authentication 192.168.1.2

[3Com-radius-radius1] secondary accounting 192.168.1.3

#Set the shared key for message exchange between the switch and the RADIUS authentication servers to name.

[3Com-radius-radius1] key authentication name

#Set the shared key for message exchange between the switch and the accounting RADIUS servers to money.

[3Com-radius-radius1] key accounting money

#Set the interval and the number of packet transmission attempts for the switch to send packets to the RADIUS server.

[3Com-radius-radius1] timer 5

[3Com-radius-radius1] retry 5

#Set the timer for the switch to send real-time accounting packets to the RADIUS server to 15 minutes.

[3Com-radius-radius1] timer realtime-accounting 15

#Configure the switch to send a username without the domain name to the RADIUS server.

[3Com-radius-radius1] user-name-format without-domain

[3Com-radius-radius1] quit

# Create a domain named aabbcc.net and enter its view.

[3Com] domain aabbcc.net

# Specify the RADIUS scheme for the domain.

[3Com-isp-aabbcc.net] scheme radius-scheme radius1

# Enable the idle disconnecting function and set the related parameters.

[3Com-isp-aabbcc.net] idle-cut enable 20 2000

[3Com-isp-aabbcc.net] quit