3Com Switch 8800 Family Firewall Module Configuration and Command Reference Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 8116fl Redundant Switch Fabric Module

42 CHAPTER 4: AAA AND RADIUS/HWTACACS PROTOCOL CONFIGURATION

By default, a RADIUS request can be sent up to three times.

Setting the Supported

RADIUS Server Type

You can use the following command to set the supported RADIUS server type.

Perform the following configurations in RADIUS view.

By default, in system scheme, the RADIUS server type is 3com; in the newly added

RADIUS scheme, the RADIUS server type is standard.

If a 3Com CAMS server is used, some parameters, such as service type, EXEC

priority level, and FTP directory, take effect only after service-type is configured as

3com.

Setting RADIUS Server

State

For primary and secondary servers (no matter they are

authentication/authorization servers or accounting servers) in a RADIUS scheme, if

the primary server is disconnected from the NAS due to some fault, the NAS

automatically turns to the secondary server. However, after the primary one

recovers, the NAS does not resume the communication with it at once; instead,

the NAS continues communicating with the secondary one and turns to the

primary one again only after the secondary one fails. To have the NAS

communicate with the primary server right after its recovery, you can manually set

the primary server state to active.

When both primary and secondary servers are active or blocked, the NAS sends

packets to the primary one only.

Perform the following configurations in RADIUS view.

Tabl e 30 Set the maximum number of RADIUS request attempts

Operation Command

Set the maximum number of RADIUS request

attempts.

retry retry-times

Restore the default maximum number of

RADIUS request attempts.

undo retry

Tabl e 31 Set the supported RADIUS server type

Operation Command

Set the supported RADIUS server type. server-type { 3com | standard }

Restore the RADIUS server type to the default setting. undo server-type

Tabl e 32 Set RADIUS server state

Operation Command

Set the state of the primary RADIUS

authentication/authorization server.

state primary authentication { block | active }

Set the state of the primary RADIUS

accounting server.

state primary accounting { block | active }

Set the state of the secondary RADIUS

authentication/authorization server.

state secondary authentication { block | active }

Set the state of the secondary RADIUS

accounting server.

state secondary accounting { block | active }