Adding a radius server to the client’s server list – Brocade Network OS NETCONF Operations Guide v4.1.1 User Manual
Page 235
Network OS NETCONF Operations Guide
203
53-1003231-02
RADIUS
16
NOTE
If you do not configure the key attribute, the authentication session will not be encrypted. The value
of the key attribute must match the value configured in the RADIUS configuration file; otherwise, the
communication between the server and the switch fails.
Adding a RADIUS server to the client’s server list
You must configure the Domain Name System (DNS) server on the switch prior to adding the
RADIUS server with a domain name or a host name. Without the DNS server, name resolution of
the RADIUS server fails and therefore the add operation fails.
NOTE
When a list of servers is configured on the switch, failover from one server to another server
happens only if a RADIUS server fails to respond; it does not happen when user authentication fails.
To add a RADIUS server to the client server list, perform the following steps.
1. Issue the
urn:brocade.com:mgmt:brocade-aaa workspace.
2. Under the
3. Under the
parameters you want to set.
The following example configures hostname 10.38.37.130 and sets the protocol, key, and
timeout values.
key
The shared secret between the switch and the RADIUS server. The default value is
“sharedsecret.” The key cannot contain spaces and must be from 8 through 40
characters in length. Empty keys are not supported.
retries
The number of attempts permitted to connect to a RADIUS server. The range is 0
through 100. The default value is 5.
timeout
The wait time in seconds for the RADIUS server to respond. The default is 5 seconds.
the range is 1 through 60.
TABLE 9
RADIUS server parameters (Continued)
Parameter
Description