Multiple radius server configuration, Radius server group configuration – Allied Telesis AlliedWare Plus Operating System Version 5.4.4C (x310-26FT,x310-26FP,x310-50FT,x310-50FP) User Manual
Page 1267
RADIUS Introduction and Configuration
Software Reference for x310 Series Switches
C613-50046-01 REV A
AlliedWare Plus
TM
Operating System - Version 5.4.4C
46.17
Multiple RADIUS Server Configuration
Example
The following example shows how to configure two RADIUS servers with specific timeout,
retransmit, and key values. The
command changes the global
retransmission value to 4 for all RADIUS servers. The
command
configures specific timeout, retransmission, and key values for the RADIUS server hosts
with IP addresses 172.2.2.2 and 172.1.1.1
Figure 46-10: Multiple RADIUS Server sample configuration
RADIUS Server Group Configuration
Example
The following example shows how to create server group group2 with three RADIUS
server members, each with the same IP address but with unique authentication and
accounting ports:
Figure 46-11: RADIUS Server Group sample configuration using the same IP address
!
! Enable and configure radius authentication and accounting
! services on the switch:
!
aaa authentication login default group radius
aaa accounting default start-stop group radius
!
! Change the retransmission value for all RADIUS servers:
!
radius-server retransmit 4
!
! Configure per-server specific timeout, retransmission, and
! key values. Change the default auth-port and acct-port
! values.
!
radius-server host 172.2.2.2 auth-port 1645 acct-port 1646
timeout 3 retransmit 3 key radkey
!
! Configure per-server specific timeout and key values. This
! server uses the global retransmission value.
!
radius-server host 172.1.1.1 timeout 6 key rad123
!
!
aaa group server radius group2
server 172.1.1.1 auth-port 1645 acct-port 1646
server 172.1.1.1 auth-port 1812 acct-port 1813
server 172.1.1.1 auth-port 2000 acct-port 2001
!