Create a RADIUS scheme before performing any other RADIUS configurations. You can configure a
maximum of 16 RADIUS schemes. A RADIUS scheme can be used by multiple ISP domains.
To create a RADIUS scheme:

Step Command

Remarks

Enter system view.

system-view

N/A

Create a RADIUS scheme and
enter RADIUS scheme view.

radius scheme
radius-scheme-name

The default setting depends on the
type of startup configuration used:

•

If the device starts up with initial

settings, no RADIUS scheme is

defined.

•

If the device starts up with the

factory defaults, a RADIUS

scheme named system is

defined.

For more information about the
startup configuration, see

Fundamentals Configuration

Guide.

Specifying the RADIUS authentication servers

A RADIUS authentication server completes authentication and authorization together, because
authorization information is piggybacked in authentication responses sent to RADIUS clients.
You can specify one primary authentication server and a maximum of 16 secondary authentication

servers for a RADIUS scheme. When the primary server is not available, the device searches for the

secondary servers in the order they are configured. The first secondary server in active state is used for
communication.
If redundancy is not required, specify only the primary server. A RADIUS authentication server can

function as the primary authentication server for one scheme and a secondary authentication server for

another scheme at the same time.
To specify RADIUS authentication servers for a RADIUS scheme:

This manual is related to the following products:

H3C S5820V2 Series Switches H3C S5830 Series Switches H3C S5830V2 Series Switches H3C S3600V2 Series Switches