H3C S7500 Series Ethernet Switches Operation Manual
Operation Manual – AAA & RADIUS & HWTACACS & EAD
H3C S7500 Series Ethernet Switches
Chapter 1 AAA & RADIUS & HWTACACS
Configuration
1-22
Note:
Actually, the RADIUS protocol configuration only defines the parameters used for
information exchange between the switch and the RADIUS servers. To make these
parameters take effect, make sure you reference the RADIUS scheme configured with
these parameters in an ISP domain view. For specific configuration commands, refer to
AAA Configuration.
This section covers these topics:
z Creating a RADIUS Scheme
z Configuring RADIUS Authentication/Authorization Servers
z Configuring RADIUS Accounting Servers
z Configuring Shared Keys for RADIUS Packets
z Configuring the Maximum Number of Transmission Attempts of RADIUS
Requests
z Configuring the Supported RADIUS Server Type
z Configuring the Status of RADIUS Servers
z Configuring the Attributes for Data to be Sent to RADIUS Servers
z Configuring a Local RADIUS Authentication Server
z Configuring the Timers of RADIUS Servers
z Configuring the User Re-Authentication upon Device Restart Function
1.4.1 Creating a RADIUS Scheme
The RADIUS protocol is configured scheme by scheme. You should first create a
RADIUS scheme and enter its view before performing other RADIUS protocol
configurations.
Table 1-12 Create a RADIUS scheme
To do... Use the command... Remarks
Enter system view
system-view
—
Create a RADIUS
scheme and enter its
view
radius scheme
radius-scheme-name
Required
By default, a RADIUS scheme
named system has already been
created in the system.