Cisco Cisco Packet Data Gateway (PDG)
Managing and Monitoring the AAA Servers
▀ Managing the AAA Servers
▄ AAA Interface Administration and Reference, StarOS Release 17
44
Managing the AAA Servers
This section provides information and instructions for using the system Command Line Interface (CLI) for
troubleshooting the network reachability issues for AAA servers that may arise during system operation.
troubleshooting the network reachability issues for AAA servers that may arise during system operation.
The following topics are discussed in this section:
Using the RADIUS Testing Tools
The CLI provides a mechanism for testing network connectivity with and configuration of RADIUS authentication and
accounting servers. This functionality can be extremely useful in determining the accuracy of the system’s RADIUS
configuration, the configuration of the subscriber profile on the RADIUS server, and troubleshooting the server’s
response time.
accounting servers. This functionality can be extremely useful in determining the accuracy of the system’s RADIUS
configuration, the configuration of the subscriber profile on the RADIUS server, and troubleshooting the server’s
response time.
Testing a RADIUS Authentication Server
When used to test a RADIUS authentication server, the tool generates an authentication request message for a specific
user name.
user name.
Important:
The user name must already be configured on the RADIUS authentication server prior to executing
the test.
To execute the RADIUS authentication test tool, in the Exec mode, use the following command:
radius test authentication { all | radius group <group_name> | server
<server_name> port <server_port> } <user_name> <password>
<server_name> port <server_port> } <user_name> <password>
Notes:
all
specifies that all configured RADIUS authentication servers be tested.
radius group
<group_name>
specifies the configured RADIUS authentication servers in a RADIUS server
group named
<group_name>
for server group functionality.
<server_name>
specifies the IP address of a specific RADIUS authentication server to test.
<server_port>
specifies the TCP port over that the system should use when communicating with the RADIUS
authentication server to test.
<user_name>
specifies a username that is supplied to the RADIUS server for authentication.
<password>
specifies the password associated with the username that is supplied to the RADIUS server for
authentication.
The following is a sample of this command’s output for a successful response when testing a RADIUS authentication
server with an IP address of 192.168.250.150 on port 1812.
server with an IP address of 192.168.250.150 on port 1812.
Authentication from authentication server 192.168.250.150, port 1812
Authentication Success: Access-Accept received