Manualshelf

H3C S7500E Series Ethernet Switches Operation Manual

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 8116fl Redundant Switch Fabric Module
881882883884885886887888889890
Operation Manual – AAA RADIUS HWTACACS
H3C S7500E Series Ethernet Switches
Chapter 1 AAA/RADIUS/HWTACACS
Configuration
1-43
Symptom2: RADIUS packets cannot reach the RADIUS server.
Analysis:
1) The communication link between the NAS and the RADIUS server is down (at the
physical layer and data link layer).
2) The NAS is not configured with the IP address of the RADIUS server.
3) The UDP ports for authentication/authorization and accounting are not correct.
Solution:
Check that:
1) The communication links between the NAS and the RADIUS server work well at
both physical and link layers.
2) The IP address of the RADIUS server is correctly configured on the NAS.
3) UDP ports for authentication/authorization/accounting configured on the NAS are
the same as those configured on the RADIUS server.
Symptom3: A user is authenticated and authorized, but accounting for the user is not
normal.
Analysis:
1) The accounting port number is not correct.
2) Configuration of the authentication/authorization server and the accounting server
are not correct on the NAS. For example, one server is configured on the NAS to
provide all the services of authentication/authorization and accounting, but in fact
the services are provided by different servers.
Solution:
Check that:
1) The accounting port number is correctly set.
2) The authentication/authorization server and the accounting server are correctly
configured on the NAS.
1.8.2 Troubleshooting HWTACACS
Refer to Troubleshooting RADIUS if you encounter a HWTACACS fault.