Cisco Cisco IOS Software Release 12.2(27)SBC
RADIUS Server Load Balancing
radius-server host
27
Cisco IOS Security Configuration Guide
radius-server host
To specify a RADIUS server host, use the radius-server host command in global configuration mode.
To delete the specified RADIUS host, use the no form of this command.
To delete the specified RADIUS host, use the no form of this command.
radius-server host {hostname | ip-address} [test username user-name] [auth-port port-number]
[ignore-auth-port] [acct-port port-number] [ignore-acct-port] [timeout seconds]
[retransmit retries] [key string] [alias {hostname | ip-address}] [idle-time seconds]
[retransmit retries] [key string] [alias {hostname | ip-address}] [idle-time seconds]
no radius-server host {hostname | ip-address}
Syntax Description
hostname
Domain Name System (DNS) name of the RADIUS server host.
ip-address
IP address of the RADIUS server host.
test username
(Optional) Turns on the automated testing feature for RADIUS server load
balancing.
balancing.
user-name
(Optional) Test user ID username.
•
Must be used if the test username keyword is used.
Caution
It is recommended that a test user, one that is not defined on the
RADIUS server, be used for RADIUS server automated testing to
protect against security issues that may arise if the test user is not
correctly configured.
RADIUS server, be used for RADIUS server automated testing to
protect against security issues that may arise if the test user is not
correctly configured.
auth-port
(Optional) Specifies the UDP destination port for authentication requests.
port-number
(Optional) Port number for authentication requests; the host is not used for
authentication if set to 0. If unspecified, the port number defaults to 1645.
authentication if set to 0. If unspecified, the port number defaults to 1645.
ignore-auth-port
(Optional) Turns off the automated testing feature for RADIUS server load
balancing on the authentication port.
balancing on the authentication port.
acct-port
(Optional) Specifies the UDP destination port for accounting requests.
port-number
(Optional) Port number for accounting requests; the host is not used for
accounting if set to 0. If unspecified, the port number defaults to 1646.
accounting if set to 0. If unspecified, the port number defaults to 1646.
ignore-acct-port
(Optional) Turns off the automated testing feature for RADIUS server load
balancing on the accounting port.
balancing on the accounting port.
timeout
(Optional) The time interval (in seconds) that the router waits for the RADIUS
server to reply before retransmitting. This setting overrides the global value of
the radius-server timeout command. If no timeout value is specified, the global
value is used. Enter a value in the range 1 to 1000.
server to reply before retransmitting. This setting overrides the global value of
the radius-server timeout command. If no timeout value is specified, the global
value is used. Enter a value in the range 1 to 1000.
seconds
(Optional) Specifies the timeout value. Enter a value in the range 1 to 1000. If
no timeout value is specified, the global value is used.
no timeout value is specified, the global value is used.
retransmit
(Optional) The number of times a RADIUS request is re-sent to a server, if that
server is not responding or responding slowly. This setting overrides the global
setting of the radius-server retransmit command.
server is not responding or responding slowly. This setting overrides the global
setting of the radius-server retransmit command.
retries
(Optional) Specifies the retransmit value. Enter a value in the range 1 to 100. If
no retransmit value is specified, the global value is used.
no retransmit value is specified, the global value is used.