RADIUS Authentication and Accounting

Configuring the Switch for RADIUS Authentication

3. Configure the Switch’s Global RADIUS Parameters

You can configure the switch for the following global RADIUS parameters:

Number of login attempts: In a given session, specifies how many tries at entering the correct username and password pair are allowed before access is denied and the session terminated. (This is a general aaa authentication parameter and is not specific to RADIUS.)

Global server key: The server key the switch will use for contacts with all RADIUS servers for which there is not a server-specific key configured by radius-server host < ip-address> key < key-string>. This key is optional if you configure a server-specific key for each RADIUS server entered in the switch. (Refer to “2. Configure the Switch To Access a RADIUS Server” on page 5-10.)

Server timeout: Defines the time period in seconds for authentica- tion attempts. If the timeout period expires before a response is received, the attempt fails.

Server dead time: Specifies the time in minutes during which the switch avoids requesting authentication from a server that has not responded to previous requests.

Retransmit attempts: If the first attempt to contact a RADIUS server fails, specifies how many retries you want the switch to attempt on that server.

5-12

Page 112
Image 112
HP 6108, 4100gl, 2650 (J4899A/B), 2626 (J4900A/B), 2600-PWR manual Configure the Switch’s Global Radius Parameters