Users Guide

Security Commands 1091

server-key

Use this command to configure a global shared secret that is used for all

dynamic RADIUS clients that do not have an individual shared secret

configured. Use the no form of the command to remove the global shared

secret configuration.

Syntax

server-key [0 | 7] key-string

no server-key

• 0—An unencrypted key is to be entered.

• 7—An encrypted key is to be entered.

• key-string—The key string in encrypted or unencrypted form. In encrypted

form, it must be 256 characters in length. In unencrypted form, it may be

up to 128 characters in length. Enclose the key string in quotes to use

special characters or embedded blanks.

Default Configuration

By default, no global server key is configured.

Command Modes

Dynamic RADIUS Configuration

User Guidelines

Only one global server key may be defined. Use the server-key parameter in

the client command to configure a unique server key for each client.

Command History

Introduced in version 6.2.0.1 firmware.

Example

The following example configures RADIUS servers at 1.1.1.1, 2.2.2.2, and

3.3.3.3. It sets the front panel ports to use multi-auth authentication. CoA is

configured for two RADIUS servers located at 1.1.1.1 and 2.2.2.2 using a