beautypg.com

Radius, Ldap – Brocade Virtual ADX Server Load Balancing Guide (Supporting ADX v03.1.00) User Manual

Page 196

background image

180

Brocade Virtual ADX Server Load Balancing Guide

53-1003247-01

Layer 7 health checks

4

RADIUS

Configuring RADIUS health check values
You can define the RADIUS parameters that the Brocade Virtual ADX sends to a RADIUS application
port during the Layer 7 health check.

The RADIUS health check requires a specific user name, password, and authentication key from
the RADIUS server. To specify these values, use one of the following methods.

To configure the parameters for a RADIUS health check, enter commands such as the following at
the real server level of the CLI.

Virtual ADX(config-rs-rocket)#port radius username evil

Virtual ADX(config-rs-rocket)#port radius password woody

Virtual ADX(config-rs-rocket)#port radius key laser

Syntax: [no] port radius username string

Syntax: [no] port radius password string

Syntax: [no] port radius key string

Dropping failed RADIUS health checks
With a valid response from a RADIUS server (that is, user authentication pass or fail), the Brocade
Virtual ADX marks the RADIUS health check as passed. However, this behavior might not be desired
in some cases. The following enhancement lets the Brocade Virtual ADX mark the RADIUS health
check as FAIL if authentication is received as (PW_ACCESS_REJECT).

Virtual ADX(config-rs-rocket)#server radius-fail-healthcheck-on-access-reject

Syntax: [no] server radius-fail-healthcheck-on-access-reject

LDAP

Configuring Usernames for Authenticated LDAP Bonding
Authenticated bonding with an LDAP server requires the configuration of a username and
password that are sent as parameters in the bind request.

To define the username the Brocade Virtual ADX will use to create an authenticated bind with an
LDAP port on a real server, enter commands such as the following at the real port level of the CLI.

Virtual ADX(config)#server real r1 192.168.20.43

Virtual ADX(config-rs-r1)#port ldap username “cn=Directory Manager”

Syntax: [no] port {ldap | ldaps | port-num} username name

The name variable specifies the name of the Directory object that the Brocade Virtual ADX will bind
as; it is a character string that cannot exceed 128 characters.

Configuring Passwords for Authenticated LDAP Bonding

To define the password the Brocade Virtual ADX will use to create an authenticated bind with an
LDAP port on a real server, enter commands such as the following at the real port level of the CLI.

Virtual ADX(config)#server real r1 192.168.20.43

Virtual ADX(config-rs-r1)#port ldap password “brocade123”

See also other documents in the category Brocade Computer Accessories: