ZyXEL Communications Security Camera 3.1 ユーザーズマニュアル
Chapter 30 AAA Server
ZyWALL (ZLD) CLI Reference Guide
254
30.2.8 aaa group server Command Example
The following example creates a RADIUS server group with two members and sets the secret key to
“12345678” and the timeout to 100 seconds. Then this example also shows how to view the
RADIUS group settings.
“12345678” and the timeout to 100 seconds. Then this example also shows how to view the
RADIUS group settings.
aaa group server radius group-name
Enter the sub-command mode.
[no] case-sensitive
Specify whether or not the server checks the username case. Set this to be
the same as the server’s behavior.
the same as the server’s behavior.
[no] server description
description
Sets the descriptive information for the RADIUS server group. You can use
up to 60 printable ASCII characters. The
up to 60 printable ASCII characters. The
no
command clears the setting.
[no] server group-attribute <1-
255>
Sets the value of an attribute that the ZyWALL is used to determine to which
group a user belongs.
group a user belongs.
This attribute’s value is called a group identifier. You can add ext-group-
user user objects to identify groups based on different group identifier
values.
user user objects to identify groups based on different group identifier
values.
For example, you could configure attributes 1,10 and 100 and create a ext-
group-user user object for each of them. The
group-user user object for each of them. The
no
command clears the
setting.
[no] server host radius_server
Enter the IP address (in dotted decimal notation) or the domain name of a
RADIUS server to add to this server group. The
RADIUS server to add to this server group. The
no
command clears this
setting.
[no] server key secret
Sets a password (up to 15 alphanumeric characters) as the key to be shared
between the RADIUS server(s) and the ZyWALL. The
between the RADIUS server(s) and the ZyWALL. The
no
command clears
this setting.
[no] server timeout time
Sets the search timeout period (in seconds). Enter a number between 1 and
300. The
300. The
no
command clears this setting and set this to the default setting
of 5 seconds.
Table 152
aaa group server radius Commands (continued)
COMMAND
DESCRIPTION
Router# configure terminal
Router(config)# aaa group server radius RADIUSGroup1
Router(group-server-radius)# server host 192.168.1.100 auth-port 1812
Router(group-server-radius)# server host 172.23.22.100 auth-port 1812
Router(group-server-radius)# server key 12345678
Router(group-server-radius)# server timeout 100
Router(group-server-radius)# exit
Router(config)# show aaa group server radius RADIUSGroup1
key : 12345678
timeout : 100
description :
group attribute : 11
No. Host Member Auth. Port
==========================================================================
1 192.168.1.100 1812
2 172.23.22.100 1812