3com 4500 26-PORT Manuel D’Utilisation

276

HAPTER

11: U

SING

AAA

AND

RADIUS C

OMMANDS

Example 2:

To set the accounting packet key of the RADIUS scheme to “ok”, enter the
following:

[4500-radius]key accounting ok

local-server

Syntax

local-server nas-ip ip-address key string

undo local-server nas-ip ip-address

View

System View

Parameter

nas-ip ip-address:

set NAS-IP address of access server.

ip-address

is expressed

in the format of dotted decimal. By default, there is a local server with the NAS-IP
address of 127.0.0.1.

key string:

Set the shared key,

string

is a character string containing up to 16

characters.

Description

Use the

local-server

command to configure the parameters of local RADIUS

server. Use the

undo local-server

command to cancel a local RADIUS server.

RADIUS service, which adopts authentication/authorization/accounting servers to
manage users, is widely used in the Switch 4500. Besides, local
authentication/authorization service is also used in these products and it is called
local RADIUS function, that is, realize basic RADIUS function on the Switch.

When using local RADIUS server function, remember the number of the UDP port
used for authentication is 1645 and that for accounting is 1646.

The key configured by this command must be the same as that of the RADIUS
authentication/authorization packet configured by the command

key

authentication

in the RADIUS Scheme View.

The Switch 4500 Series supports up to 16 local RADIUS authentication servers.

Related commands:

radius scheme

state

and

key

Example

To set the IP address of local RADIUS authentication server to 10.110.1.2 and the
password to 3Com, enter the following:

<4500>system-view

System View: return to User View with Ctrl+Z.

[4500]local-server nas-ip 10.110.1.2 key 3Com

nas-ip

Syntax

nas-ip ip-address