Set Setup command

Description Manages configuration settings for Remote Authentication Dial-In User Service (RADIUS) servers, switch services, SNMP, and system configurations.

Authority Admin session

Syntax set setup radius services snmp system

Operands radius

Prompts you in a line-by-line fashion to configure RADIUS servers for user account and device authentication. Table 49 describes the RADIUS server configuration fields.

Table 49 RADIUS service settings

Entry

Description

 

 

 

 

 

DeviceAuthOrder

 

 

 

 

IMPORTANT: This setting is valid only with the SANtegrity Enhanced

 

 

 

 

 

 

PFE key

 

 

 

 

 

 

 

Authenticator priority for devices:

 

 

 

Local — authenticate devices using only the local security database.

 

 

 

This is the default.

 

 

 

Radius — authenticate devices using only the security database on

 

 

 

the RADIUS server.

 

 

 

RadiusLocal — authenticate devices using the RADIUS server security

 

 

 

database first. If the RADIUS server is unavailable, then use the local

 

 

 

switch security database.

 

 

 

 

 

UserAuthOrder

 

Authenticator priority for user accounts:

 

 

 

Local — authenticate users using only the local security database.

 

 

 

This is the default.

 

 

 

Radius — authenticate users using only the security database on the

 

 

 

RADIUS server.

 

 

 

RadiusLocal — authenticate users using the RADIUS server security

 

 

 

database first. If the RADIUS server is unavailable, then use the local

 

 

 

switch security database.

 

 

 

 

 

TotalServers

 

Number of RADIUS servers to configure during this session. Setting

 

 

 

TotalServers to 0 disables all RADIUS authentication. The default is 0.

 

 

 

 

 

ServerIPAddress

 

IP address of the RADIUS server. The default is 10.0.0.1.

 

 

 

 

 

ServerUDPPort

 

User Datagram Protocol (UDP) port number on the RADIUS server. The

 

 

 

default is 1812.

 

 

 

 

 

DeviceAuthServer

 

 

 

 

IMPORTANT: This setting is valid only with the SANtegrity Enhanced

 

 

 

 

 

 

PFE key

 

 

 

 

 

 

 

Enable (True) or disable (False) this server for device authentication. The

 

 

 

default is False.

 

 

 

 

 

170 Command Line Interface