HP 6125G HP 6125G & 6125G/XG Blade Switches Security Configuration Gui - Page 34
Setting the supported RADIUS server type
View all HP 6125G manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 34 highlights
• For level switching authentication, the user-name-format keep-original and user-name-format without-domain commands produce the same results. They make sure usernames sent to the RADIUS server carry no ISP domain name. To set the username format and the traffic statistics units for a RADIUS scheme: Step Command Remarks 1. Enter system view. system-view N/A 2. Enter RADIUS scheme view. radius scheme radius-scheme-name N/A 3. Set the format for usernames sent to the RADIUS servers. user-name-format { keep-original | with-domain | without-domain } Optional. By default, the ISP domain name is included in a username. data-flow-format { data { byte | 4. Specify the unit for data flows giga-byte | kilo-byte | or packets sent to the RADIUS mega-byte } | packet servers. { giga-packet | kilo-packet | mega-packet | one-packet } }* Optional. The default unit is byte for data flows and is one-packet for data packets. Setting the supported RADIUS server type The supported RADIUS server type determines the type of the RADIUS protocol that the switch uses to communicate with the RADIUS server. It can be standard or extended: • Standard-Uses the standard RADIUS protocol, compliant to RFC 2865 and RFC 2866 or later. • Extended-Uses the proprietary RADIUS protocol of HP. When the RADIUS server runs on IMC, you must set the RADIUS server type to extended. When the RADIUS server runs third-party RADIUS server software, either RADIUS server type applies. To set the RADIUS server type: Step 1. Enter system view. 2. Enter RADIUS scheme view. Command system-view radius scheme radius-scheme-name 3. Set the RADIUS server type. server-type { extended | standard } Remarks N/A N/A Optional. The default RADIUS server type is standard. NOTE: Changing the RADIUS server type restores the unit for data flows and that for packets that are sent to the RADIUS server to the defaults. Setting the maximum number of RADIUS request transmission attempts Because RADIUS uses UDP packets to transfer data, the communication process is not reliable. RADIUS uses a retransmission mechanism to improve the reliability. If a NAS sends a RADIUS request to a RADIUS server but receives no response after the response timeout timer (defined by the timer response-timeout command) expires, it retransmits the request. If the number of transmission attempts exceeds the specified limit but it still receives no response, it tries to communicate with other RADIUS 24