Users Guide
Specifying a RADIUS Server Host
When conguring a RADIUS server host, you can set dierent communication parameters, such as the UDP port, the key password, the
number of retries, and the timeout.
To specify a RADIUS server host and congure its communication parameters, use the following command.
• Enter the host name or IP address of the RADIUS server host.
CONFIGURATION mode
radius-server host {hostname | ip-address} [auth-port port-number] [retransmit retries]
[timeout seconds] [key [encryption-type] key]
Congure the optional communication parameters for the specic host:
• auth-port port-number: the range is from 0 to 65535. Enter a UDP port number. The default is 1812.
• retransmit retries: the range is from 0 to 100. Default is 3.
• timeout seconds: the range is from 0 to 1000. Default is 5 seconds.
• key [encryption-type] key: enter 0 for plain text or 7 for encrypted text, and a string for the key. The key can be up to 42
characters long. This key must match the key congured on the RADIUS server host.
If you do not congure these optional parameters, the global default values for all RADIUS host are applied.
To specify multiple RADIUS server hosts, congure the radius-server host command multiple times. If you congure multiple
RADIUS server hosts, Dell Networking OS attempts to connect with them in the order in which they were congured. When Dell
Networking OS attempts to authenticate a user, the software connects with the RADIUS server hosts one at a time, until a RADIUS server
host responds with an accept or reject response.
If you want to change an optional parameter setting for a specic host, use the radius-server host command. To change the global
communication settings to all RADIUS server hosts, refer to
Setting Global Communication Parameters for all RADIUS Server Hosts.
To view the RADIUS conguration, use the show running-config radius command in EXEC Privilege mode.
To delete a RADIUS server host, use the no radius-server host {hostname | ip-address} command.
Setting Global Communication Parameters for all RADIUS Server Hosts
You can congure global communication parameters (auth-port, key, retransmit, and timeout parameters) and specic host
communication parameters on the same system.
However, if you congure both global and specic host parameters, the specic host parameters override the global parameters for that
RADIUS server host.
To set global communication parameters for all RADIUS server hosts, use the following commands.
• Set a time interval after which a RADIUS host server is declared dead.
CONFIGURATION mode
radius-server deadtime seconds
• seconds: the range is from 0 to 2147483647. The default is 0 seconds.
• Congure a key for all RADIUS communications between the system and RADIUS server hosts.
CONFIGURATION mode
radius-server key [encryption-type] key
• encryption-type: enter 7 to encrypt the password. Enter 0 to keep the password as plain text.
• key: enter a string. The key can be up to 42 characters long. You cannot use spaces in the key.
Security
717