R3303-HP HSR6800 Routers Security Command Reference
64
Usage guidelines
For secrecy, all shared keys, including keys configured in plain text, are saved in cipher text.
The shared keys specified during the configuration of the RADIUS servers take precedence.
The shared keys configured on the device must match those configured on the RADIUS servers.
Examples
# For RADIUS scheme radius1, set the shared key for secure accounting communication to ok in plain
text.
<Sysname> system-view
[Sysname] radius scheme radius1
[Sysname-radius-radius1] key accounting simple ok
# For RADIUS scheme radius1, set the shared key for secure accounting communication to ok in plain
text.
<Sysname> system-view
[Sysname] radius scheme radius1
[Sysname-radius-radius1] key accounting ok
# For RADIUS scheme radius1, set the shared key for secure authentication/authorization
communication to $c$3$NMCbVjyIutaV6csCOGp4zsKRTlg2eT3B in cipher text.
<Sysname> system-view
[Sysname] radius scheme radius1
[Sysname-radius-radius1] key authentication cipher
$c$3$NMCbVjyIutaV6csCOGp4zsKRTlg2eT3B
Related commands
display radius scheme
nas-ip (RADIUS scheme view)
Use nas-ip to specify a source IP address for outgoing RADIUS packets.
Use undo nas-ip to restore the default.
Syntax
nas-ip { ipv4-address | ipv6 ipv6-address }
undo nas-ip
Default
The source IP address of an outgoing RADIUS packet is that configured by the radius nas-ip command
in system view. If the radius nas-ip command is not configured, the source IP address is the IP address of
the outbound interface.
Views
RADIUS scheme view
Default command level
2: System level