Chapter 3 Configuring the CSS as a Client of a RADIUS Server

Configuring a RADIUS Server for Use with the CSS

Table 3-1 RADIUS Configuration Quick Start (continued)

Task and Command Example

5.Use the virtual authentication command to configure the primary, secondary, and tertiary virtual authentication method. See Chapter 1, Controlling CSS Access.

#(config) virtual authentication primary radius

6.(Recommended) Use the show radius command and its options to display information and statistics about the RADIUS server configuration. See the “Showing RADIUS Server Configuration Information” section.

(config)# show radius config all

(config)# show radius statistics all

The following running-configuration example shows the results of entering the commands in Table 3-1.

!*************************** GLOBAL ***************************

radius-server primary 172.27.56.76 secret Hello auth-port 1645 radius-server secondary 172.27.56.79 secret Hello auth-port 1645 virtual authentication primary radius

Configuring a RADIUS Server for Use with the CSS

This section provides background information on the setup of a RADIUS server. It is intended as a guide to help ensure proper communication with a RADIUS server and a CSS operating as a RADIUS client.

The following sections summarize the recommended settings for the Cisco Secure Access Control Server (ACS) when used as a centralized RADIUS server with the CSS.

 

Cisco Content Services Switch Security Configuration Guide

3-4

OL-5650-02

Page 74
Image 74
Cisco Systems OL-5650-02 Configuring a Radius Server for Use with the CSS, #config virtual authentication primary radius