Cisco Cisco IOS Software Release 12.2(27)SBC

After configuring RADIUS server load balancing, you may monitor the idle timer, dead timer, load 
balancing server selection, or issue a manual test command to verify server status.

For troubleshooting RADIUS server load balancing you can use the following commands as appropriate.

The debug aaa test command can be used to determine when the idle timer or dead timer has 
expired, when test packets are sent, the status of the server, or to verify server state.

The debug aaa sg-server selection command can be used to examine which server is being selected 
for load balancing.

The test aaa group command can be used to manually verify RADIUS load-balanced server status.

Router> enable

Enables privileged EXEC mode. 

Enter your password if prompted.

 terminal

Router# configure terminal

Enters global configuration mode.

 {hostname | ip-address} 

[test username user-name] [auth-port 

port-number] [ignore-auth-port] [acct-port 

port-number] [ignore-acct-port] [idle-time 

seconds]

Router(config)# radius-server host 192.0.2.1 

test username test1 idle-time 1

Enables RADIUS automated testing.

The test username keyword must be used to enable 
RADIUS automated testing, followed by the value for 
the user-name argument.

By default, auth-port is tested using port 1645.

Use ignore-auth-port to turn off testing of the 
authentication port.

By default, acct-port is tested using port 1645.

Use ignore-acct-port to turn off testing of the 
accounting port.

By default, the idle-time is 3600 seconds. The range is 
1 – 35791.

[batch-size number] 

[ignore-preferred-server]

Router(config)# radius-server load-balance 

method least-outstanding

Enables least-outstanding load balancing for the global 
RADIUS server group.

By default, the batch-size is set to 25. A range of 1 – 
2147483647 may be used.

By default, the preferred server is enabled.

If you want to disable the preferred server setting, use 
the ignore-preferred-server keyword.