Cisco WS-C4003 Software Guide - Page 381
Setting the RADIUS Dead Time, time is ignored because there are no alternate servers available.
View all Cisco WS-C4003 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 381 highlights
Chapter 27 Configuring Switch Access Using AAA Configuring Authentication This example shows how to specify the RADIUS retransmit count as 4 and how to verify the configuration: Console> (enable) set radius retransmit 4 Radius retransmit count set to 4. Console> (enable) show radius Login Authentication tacacs radius local Console Session disabled enabled(primary) enabled Telnet Session disabled enabled(primary) enabled Enable Authentication: Console Session Telnet Session tacacs disabled disabled radius enabled(primary) enabled(primary) local enabled enabled Radius Deadtime: Radius Key: Radius Retransmit: Radius Timeout: 0 minutes Secret_RADIUS_key 4 10 seconds Radius-Server Status 172.20.52.3 primary Console> (enable) Auth-port -----------1812 Setting the RADIUS Dead Time You can configure the switch so that when a RADIUS server does not respond to an authentication request, the switch marks that server as dead for the length of time specified by the dead time. Any authentication requests received during the dead time interval (such as other users attempting to log in to the switch) are not sent to a RADIUS server marked dead. Configuring a dead time speeds up the authentication process, by eliminating timeouts and retransmissions to the dead RADIUS server. If you configure only one RADIUS server, or if all of the configured servers are marked dead, the dead time is ignored because there are no alternate servers available. To set the RADIUS dead time, perform this task in privileged mode: Step 1 Step 2 Task Command Configure the RADIUS server dead time interval. set radius deadtime minutes Verify the RADIUS configuration. show radius This example shows how to set the RADIUS deadtime interval and verify the configuration: Console> (enable) set radius deadtime 5 Radius deadtime set to 5 minute(s). Console> (enable) show radius Login Authentication tacacs radius local Console Session disabled enabled(primary) enabled Telnet Session disabled enabled(primary) enabled Enable Authentication: Console Session Telnet Session 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 27-27