HP 6125XLG R2306-HP 6125XLG Blade Switch Security Configuration Guide - Page 33
Specifying the RADIUS accounting servers and the relevant parameters, Command, Remarks, active
View all HP 6125XLG manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 33 highlights
Step 2. Enter RADIUS scheme view. 3. Specify RADIUS authentication servers. Command Remarks radius scheme radius-scheme-name N/A • Specify the primary RADIUS authentication server: primary authentication { ipv4-address | ipv6 ipv6-address } Configure at least one command. [ port-number | key { cipher | By default, no authentication server simple } string | vpn-instance is specified. vpn-instance-name ] * Two authentication servers in a • Specify a secondary RADIUS scheme, primary or secondary, authentication server: cannot have the same combination secondary authentication of IP address, port number, and { ipv4-address | ipv6 ipv6-address } VPN. [ port-number | key { cipher | simple } string | vpn-instance vpn-instance-name ] * Specifying the RADIUS accounting servers and the relevant parameters You can specify one primary accounting server and up to 16 secondary accounting servers for a RADIUS scheme. When the primary server is not available, the device tries to communicate with the secondary servers in the order they are configured, and communicates with the first secondary server in active state. When redundancy is not required, specify only the primary server. A RADIUS accounting server can function as the primary accounting server for one scheme and a secondary accounting server for another scheme at the same time. When the device receives a connection teardown request from a host or a connection teardown command from an administrator, it sends a stop-accounting request to the accounting server. When the maximum number of real-time accounting attempts is reached, the device disconnects users who have no accounting responses. RADIUS does not support accounting for FTP users. To specify RADIUS accounting servers and the relevant parameters for a RADIUS scheme: Step 1. Enter system view. 2. Enter RADIUS scheme view. 3. Specify RADIUS accounting servers. Command Remarks system-view N/A radius scheme radius-scheme-name • Specify the primary RADIUS accounting server: primary accounting { ipv4-address | ipv6 ipv6-address } [ port-number | key { cipher | simple } string | vpn-instance vpn-instance-name ] * • Specify a secondary RADIUS accounting server: secondary accounting { ipv4-address | ipv6 ipv6-address } [ port-number | key { cipher | simple } string | vpn-instance vpn-instance-name ] * N/A Configure at least one command. By default, no accounting server is specified. Two accounting servers in a scheme, primary or secondary, cannot have the same combination of IP address, port number, and VPN. 24