3Com Switch 7750 Configuration Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 8116fl Redundant Switch Fabric Module

521

522

523

524

525

526

527

528

529

530

528 CHAPTER 49: AAA & RADIUS & HWTACACS CONFIGURATION

Configuring the

Maximum Number of

Transmission Attempts

of RADIUS Requests

The communication in RADIUS is unreliable because this protocol adopts UDP

packets to carry data. Therefore, it is necessary for the switch to retransmit a

RADIUS request if it gets no response from the RADIUS server after the response

timeout timer expires. If the maximum number of transmission attempts is reached

and the switch still receives no answer, the switch considers that the request fails.

Configuring the

Supported RADIUS

Server Type

Configuring the Status

of RADIUS Servers

For the primary and secondary servers (authentication/authorization servers, or

accounting servers) in a RADIUS scheme:

When the switch fails to communicate with the primary server due to some server

trouble, the switch will actively exchange packets with the secondary server.

After the time the primary server keeps in the block state exceeds the time set

with the timer quiet command, the switch will try to communicate with the

primary server again when it receives a RADIUS request. If the primary server

recovers, the switch immediately restores the communication with the primary

server instead of communicating with the secondary server, and at the same time

restores the status of the primary server to the active state while keeping the

status of the secondary server unchanged.

When both the primary and secondary servers are in active or block state, the

switch sends packets only to the primary server.

Table 411 Configure the maximum transmission attempts of RADIUS request

Operation Command Description

Enter system view system-view -

Create a RADIUS

scheme and enter its

view

radius scheme

radius-scheme-name

Required

By default, a RADIUS scheme named

“system” has already been created in the

system.

Set the maximum

number of

transmission attempts

of RADIUS requests

retry retry-times Optional

By default, the system tries three times to

transmit a RADIUS request.

Table 412 Configure the supported RADIUS server type

Operation Command Description

Enter system view system-view -

Create a RADIUS

scheme and enter its

view

radius scheme

radius-scheme-name

Required

By default, a RADIUS scheme named

“system” has already been created in the

system.

Specify the type of

RADIUS server

supported by the switch

server-type { extend

ed | standard }

Optional

By default, the switch supports the

standard type of RADIUS server. The type

of RADIUS server in the default RADIUS

scheme “system” is extended.