Enhancements
Release M.10.02 Enhancements
[ cnt ]: Optional counter specifier for a
An ACL configured in a RADIUS server is identified by the authentication credentials of the client or group of clients the ACL is designed to support. When a client authenticates with credentials associated with a particular ACL, the switch applies that ACL to the switch port the client is using. To enable the switch to forward a client’s credentials to the RADIUS server, you must first configure RADIUS operation and an authentication method on the switch.
1.Configure RADIUS operation on the switch:
Syntax:
This command configures the IP address and encryption key of a RADIUS server. The server should be accessible to the switch and configured to support authentication requests from clients using the switch to access the network. For more on RADIUS configuration, including the
2.Configure RADIUS network accounting on the switch (optional). RADIUS network accounting is necessary to retrieve counter information if the cnt (counter) option (described on page 62) is included in any of the ACEs configured on the RADIUS server.
Syntax: aaa accounting network <
For more on RADIUS accounting, refer to the chapter titled “RADIUS Authentication and
Accounting” in the Access Security Guide for your switch.
Note
Refer to the documentation provided with your RADIUS server for information on how the server receives and manages network accounting information, and how to perform any configuration steps necessary to enable the server to support network accounting data from the switch.
62