H3C Technologies H3C S7500E Series Switches User Manual
Page 40
2-11
To do…
Use the command…
Remarks
Enter system view
system-view
—
Enter RADIUS scheme view
radius scheme
radius-scheme-name
—
Set the shared key for RADIUS
authentication/authorization or
accounting packets
key { accounting |
authentication } string
Required
No shared key by default
A shared key configured on the device must be the same as that configured on the RADIUS server.
Setting the maximum number of RADIUS request transmission attempts
Because RADIUS uses UDP packets to transfer data, the communication process is not reliable.
RADIUS uses a retransmission mechanism to improve reliability. If a NAS sends a RADIUS request to
a RADIUS server but receives no response before the response timeout timer expires, it retransmits
the request. If the number of transmission attempts exceeds the specified limit but it still receives no
response, it considers the authentication a failure. For more information about RADIUS server states,
Setting the status of RADIUS servers
Follow these steps to set the maximum number of RADIUS request transmission attempts:
To do…
Use the command…
Remarks
Enter system view
system-view
—
Enter RADIUS scheme view
radius scheme
radius-scheme-name
—
Set the maximum number of
RADIUS request transmission
attempts
retry retry-times
Optional
3 by default
z
The maximum number of transmission attempts of RADIUS packets multiplied by the RADIUS
server response timeout period cannot be greater than 75 seconds.
z
For information about the RADIUS server response timeout period, see
controlling communication with RADIUS servers
.