that are configured in the CONFIGURATION mode are also considered to be on

 

the default VRF.

 

You must configure the RADIUS group explicitly with the aaa radius group

 

command in order for the AAA servers to use the group of RADIUS servers. The

 

802.1x servers use the group of RADIUS servers based on the VRF where the 802.1x

 

request is received. As a result, it is possible that both globally configured RADIUS

 

servers as well as the group-configured RADIUS servers (without VRF or default

 

VRF) are used for processing the 802.1x requests that are received at the default

 

VRF. The order in which the RADIUS servers are tried depends on the order in

 

which the RADIUS servers are configured.

Example

Dell(conf)#radius-server group group1

 

Dell(conf-radius-group)#radius-server host 1.1.1.1 key secret

 

Dell(conf-radius-group)#no radius-server host 1.1.1.1

Related Commands

login authentication — sets the database to be checked when a user logs in.

radius-server key — sets an authentication key for RADIUS communications.

radius-server retransmit — sets the number of times the RADIUS server attempts to send information.

radius-server timeout — sets the time interval before the RADIUS server times out.

radius-server vrf

Create an association between a RADIUS server group and a VRF and source interface. ud

Syntaxradius-server vrf vrf-name [source-interface interface]

To delete the association between a RADIUS server group and a VRF and source interface, use the no radius-server vrf vrf-name[source-interfaceinterface] command.

Parameters

Enter the keyword vrf and then the name of the VRF to

vrf vrf-name

 

associate a RADIUS server group with that VRF.

interface

Enter the following keywords and slot/port or number

 

information:

 

• For a 10-Gigabit Ethernet interface, enter the keyword

 

TenGigabitEthernet then the slot/port information.

 

• For a 40-Gigabit Ethernet interface, enter the keyword

 

fortyGigE then the slot/port information.

 

• For a Loopback interface, enter the keyword loopback

 

then a number from 0 to 16383.

 

• For a port channel interface, enter the keywords port-

 

channel then a number.

1396

Security

Page 1396
Image 1396
Dell 9.7(0.0) manual Radius-server vrf, Dellconf-radius-group#no radius-server host