Manualshelf

H3C S7500E Series Ethernet Switches Operation Manual

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 8116fl Redundant Switch Fabric Module
841842843844845846847848849850
Operation Manual – AAA RADIUS HWTACACS
H3C S7500E Series Ethernet Switches
Chapter 1 AAA/RADIUS/HWTACACS
Configuration
1-5
3) The RADIUS server authenticates the username and password. If the
authentication succeeds, it sends back an Access-Accept message containing the
information of user’s right. If the authentication fails, it returns an Access-Reject
message.
4) The RADIUS client accepts or denies the user according to the returned
authentication result. If it accepts the user, it sends a start-accounting request
(Accounting-Request) to the RADIUS server.
5) The RADIUS server returns a start-accounting response (Accounting-Response)
and starts accounting.
6) The subscriber accesses the network resources.
7) The host requests the RADIUS client to tear down the connection and the RADIUS
client sends a stop-accounting request (Accounting-Request) to the RADIUS
server.
8) The RADIUS server returns a stop-accounting response (Accounting-Response)
and stops accounting.
9) The subscriber stops network resource accessing.
IV. RADIUS packet structure
RADIUS uses UDP to transmit messages. It ensures the smooth message exchange
between the RADIUS server and the client through a series of mechanisms, including
the timer management mechanism, retransmission mechanism, and slave server
mechanism.
Figure 1-4 shows the RADIUS packet structure.
Figure 1-4 RADIUS packet structure
Descriptions of fields are as follows:
1) The Code field (1-byte long) is for indicating the type of the RADIUS packet.
Table
1-1 gives the possible values and their meanings.