Microsoft ES4649 Manual De Usuario

Command Line Interface

4-72

authentication is attempted on the TACACS+ server. If the TACACS+ server
is not available, the local user name and password is checked.

Example

Related Commands

enable password - sets the password for changing command modes (4-28)

RADIUS Client

Remote Authentication Dial-in User Service (RADIUS) is a logon authentication
protocol that uses software running on a central server to control access to
RADIUS-aware devices on the network. An authentication server contains a
database of multiple user name/password pairs with associated privilege levels for
each user or group that require management access to a switch.

radius-server host

This command specifies primary and backup RADIUS servers and authentication
parameters that apply to each server. Use the no form to restore the default values.

Syntax

[no] radius-server index host {host_ip_address | host_alias}

[auth-port auth_port] [timeout timeout] [retransmit retransmit] [key key]

• index - Allows you to specifiy up to five servers. These servers are queried

in sequence until a server responds or the retransmit period expires.

• host_ip_address - IP address of server.
• host_alias - Symbolic name of server. (Maximum length: 20 characters)
• port_number - RADIUS serverUDP port used for authentication messages.

(Range: 1-65535)

• timeout - Number of seconds the switch waits for a reply before resending

a request. (Range: 1-65535)

• retransmit - Number of times the switch will try to authenticate logon access

via the RADIUS server. (Range: 1-30)

Console(config)#authentication enable radius
Console(config)#

Table 4-29 RADIUS Client Commands

Command

Function

Mode

Page

radius-server host