H3C S7500E Series Ethernet Switches Operation Manual
Operation Manual – AAA RADIUS HWTACACS
H3C S7500E Series Ethernet Switches
Chapter 1 AAA/RADIUS/HWTACACS
Configuration
1-31
To do… Use the command… Remarks
Enter system view
system-view
—
Create a RADIUS scheme
and enter RADIUS
scheme view
radius scheme
radius-scheme-name
Required
Not defined by default
Set the RADIUS server
response timeout timer
timer response-timeout
seconds
Optional
3 seconds by default
Set the quiet timer for the
primary server
timer quiet minutes
Optional
5 minutes by default
Set the real-time
accounting interval
timer realtime-accounting
minutes
Optional
12 minutes by default
Note:
z The product of the maximum number of retransmission attempts of RADIUS
packets and the RADIUS server response timeout period cannot be greater than 75.
This product is also the upper limit of the timeout time of different access modules.
z For an access module, the product of the RADIUS server response timeout period
and the maximum number of retransmission attempts must be smaller than the
timeout time.
z To configure the maximum number of retransmission attempts of RADIUS packets,
refer to the command retry in the command manual.
1.4.10 Specifying Security Policy Servers
For a Portal enabled device, a security policy server is necessary for security check of
users accessing the network through the device. The security policy server determines
whether a user can access the intended network resources.
For details about Portal, refer to Portal Configuration in this manual.
Follow these steps to specify a security policy server:
To do… Use the command… Remarks
Enter system view
system-view
—
Create a RADIUS
scheme and enter its
view
radius scheme
radius-scheme-name
Required
Not defined by default
Specify a security policy
server
security-policy-server
ip-address
Optional
Not specified by default