Dell PowerSwitch S4128F-ON OS10 Enterprise Edition User Guide Release 10.4.3.0 - Page 790
RADIUS authentication
![]() |
View all Dell PowerSwitch S4128F-ON manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 790 highlights
Disabling or locking the linuxadmin user: To disable or lock the linuxadmin user, enter CONFIGURATION mode and execute the command system-user linuxadmin disable. OS10(config)# system-user linuxadmin disable OS10(config)# Enabling or unlocking the linuxadmin user: To enable or unlock the linuxadmin user, enter CONFIGURATION mode and execute the command no system-user linuxadmin disable. OS10(config)# no system-user linuxadmin disable OS10(config)# RADIUS authentication To configure a RADIUS server for authentication, enter the server IP address or host name, and the key used to authenticate the OS10 switch on a RADIUS host. You can enter the authentication key in plain text or encrypted format. You can change the User Datagram Protocol (UDP) port number on the server. • Configure a RADIUS authentication server in CONFIGURATION mode. By default, a RADIUS server uses UDP port 1812. radius-server host {hostname | ip-address} key {0 authentication-key | 9 authentication-key | authentication-key} [auth-port port-number] Re-enter the radius-server host command multiple times to configure more than one RADIUS server. If you configure multiple RADIUS servers, OS10 attempts to connect in the order you configured them. An OS10 switch connects with the configured RADIUS servers one at a time, until a RADIUS server responds with an accept or reject response. The switch tries to connect with a server for the configured number of retransmit retries and timeout period. Configure global settings for the timeout and retransmit attempts allowed on RADIUS servers. By default, OS10 supports three RADIUS authentication attempts and times out after five seconds. no source interface is configured. The default VRF instance is used to contact RADIUS servers. NOTE: You cannot configure both a non-default VRF instance and a source interface at the same time for RADIUS authentication. • Configure the number of times OS10 retransmits a RADIUS authentication request in CONFIGURATION mode, from 0 to 100 retries; the default is 3. radius-server retransmit retries • Configure the timeout period used to wait for an authentication response from a RADIUS server in CONFIGURATION mode, from 0 to 1000 seconds; the default is 5. radius-server timeout seconds • (Optional) Specify an interface whose IP address is used as the source IP address for user authentication with RADIUS servers in CONFIGURATION mode. By default, no source interface is configured. OS10 selects the source IP address of any interface from which a packet is sent to a RADIUS server. NOTE: If you configure a source interface which has no IP address, the IP address of the management interface is used. ip radius source-interface interface • (Optional) By default, the switch uses the default VRF instance to communicate with RADIUS servers. You can optionally configure a non-default or the management VRF instance for RADIUS authentication in CONFIGURATION mode. radius-server vrf management radius-server vrf vrf-name Configure RADIUS server OS10(config)# radius-server host 1.2.4.5 key secret1 OS10(config)# radius-server retransmit 10 790 Security
![](/manual_guide/products/dell-powerswitch-s3048on-os10-enterprise-edition-user-guide-release-10430-cc9d5f5/790.png)