204
C
HAPTER
11: 802.1X C
ONFIGURATION
Table 219
Enabling the Selection of RADIUS Accounting Option
This command can also be configured in ISP Domain View. For details, refer to
Configuring Relevant Attributes of the ISP Domain.
Setting the RADIUS
Packet Encryption Key
The RADIUS client (Switch system) and the RADIUS server use MD5 algorithm to
encrypt the exchanged packets. The two ends verify the packet through setting
the encryption key. Only when the keys are identical can both ends accept the
packets from each other and give responses.
You can use the following commands to set the encryption key for RADIUS
packets.
Perform the following configurations in RADIUS Scheme View.
Table 220
Setting the RADIUS Packet Encryption Key
By default, the keys of RADIUS authentication/authorization and accounting
packets are all “3com”.
Setting Retransmission
Times of RADIUS
Request Packet
Since RADIUS protocol uses UDP packets to carry the data, the communication
process is not reliable. If the RADIUS server has not responded to NAS before
timeout, NAS has to retransmit the RADIUS request packet. If it transmits more
than the specified
retry-times
, NAS considers the communication with the
primary and secondary RADIUS servers has been disconnected.
You can use the following command to set the retransmission times of the
RADIUS request packet.
Perform the following configurations in RADIUS Scheme View.
Table 221
Setting Retransmission Times of RADIUS Request Packet
By default, RADIUS request packet will be retransmitted up to three times.
Setting the Supported
Type of the RADIUS
Server
The Switch 4500 supports the standard RADIUS protocol and the extended
RADIUS service platforms.
Operation
Command
Enable the selection of RADIUS accounting option
accounting optional
Disable the selection of RADIUS accounting option
undo accounting optional
Operation
Command
Set RADIUS authentication/authorization packet
encryption key
key authentication
string
Restore the default RADIUS
authentication/authorization packet encryption key.
undo key authentication
Set RADIUS accounting packet key
key accounting
string
Restore the default RADIUS accounting packet key
undo key accounting
Operation
Command
Set retransmission times of RADIUS request packet
retry
retry_times
Restore the default value of retransmission times
undo retry
Summary of Contents for 400 Family
Page 12: ......
Page 16: ...14 ABOUT THIS GUIDE ...
Page 58: ...56 CHAPTER 2 PORT OPERATION ...
Page 68: ...66 CHAPTER 3 VLAN OPERATION ...
Page 98: ...96 CHAPTER 5 NETWORK PROTOCOL OPERATION ...
Page 124: ...122 CHAPTER 6 IP ROUTING PROTOCOL OPERATION ...
Page 156: ...154 CHAPTER 8 ACL CONFIGURATION ...
Page 218: ...216 CHAPTER 11 802 1X CONFIGURATION ...
Page 298: ...296 CHAPTER 13 PASSWORD CONTROL CONFIGURATION OPERATIONS ...
Page 336: ...334 APPENDIX B RADIUS SERVER AND RADIUS CLIENT SETUP ...