HP 6125XLG R2306-HP 6125XLG Blade Switch Security Configuration Guide - Page 32
Creating a RADIUS scheme, Specifying the RADIUS authentication servers, Tasks at a glance, Command
View all HP 6125XLG manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 32 highlights
Tasks at a glance (Optional.) Specifying a VPN for the scheme (Optional.) Setting the username format and traffic statistics units (Optional.) Setting the maximum number of RADIUS request transmission attempts (Optional.) Setting the status of RADIUS servers (Optional.) Specifying the source IP address for outgoing RADIUS packets (Optional.) Setting RADIUS timers (Optional.) Configuring the accounting-on feature (Optional.) Configuring the IP addresses of the security policy servers (Optional.) Displaying and maintaining RADIUS Creating a RADIUS scheme Create a RADIUS scheme before performing any other RADIUS configurations. You can configure up to 16 RADIUS schemes. A RADIUS scheme can be referenced by multiple ISP domains. To create a RADIUS scheme: Step 1. Enter system view. Command system-view 2. Create a RADIUS scheme and radius scheme enter its view. radius-scheme-name Remarks N/A The default is as follows: • If the switch uses the initial settings, no RADIUS scheme is defined. • If the switch uses the default configuration file, a system-defined RADIUS scheme named system exists. For more information about the initial settings and configuration file, see Fundamentals Configuration Guide. Specifying the RADIUS authentication servers A RADIUS authentication server completes authentication and authorization together, because authorization information is piggybacked in authentication responses sent to RADIUS clients. You can specify one primary authentication server and up to 16 secondary authentication servers for a RADIUS scheme. When the primary server is not available, the device tries to communicate with the secondary servers in the order they are configured, and communicates with the first secondary server in active state. If redundancy is not needed, specify only the primary server. A RADIUS authentication server can function as the primary authentication server for one scheme and a secondary authentication server for another scheme at the same time. To specify RADIUS authentication servers for a RADIUS scheme: Step 1. Enter system view. Command system-view 23 Remarks N/A