[no] accounting
config>system>security>radius
Supported on all 7210 SAS platforms as described in this document
This command enables RADIUS accounting.
The no form of this command disables RADIUS accounting.
no accounting
accounting-port port
no accounting-port
config>system>security>radius
Supported on all 7210 SAS platforms as described in this document
This command specifies a UDP port number on which to contact the RADIUS server for accounting requests.
Specifies the UDP port number.
[no] authorization
config>system>security>radius
Supported on all 7210 SAS platforms as described in this document
This command configures RADIUS authorization parameters for the system.
no authorization
port port
no port
config>system>security>radius
Supported on all 7210 SAS platforms as described in this document
This command configures the TCP port number to contact the RADIUS server.
The no form of this command reverts to the default value.
port 1812 (as specified in RFC 2865, Remote Authentication Dial In User Service (RADIUS))
Specifies the TCP port number to contact the RADIUS server.
[no] radius
config>system>security
Supported on all 7210 SAS platforms as described in this document
Commands in this context configure RADIUS authentication on the 7210 SAS router.
Implement redundancy by configuring multiple server addresses for each 7210 SAS series router.
The no form of this command removes the RADIUS configuration.
retry count
no retry
config>system>security>radius
config>system>security>dot1x>radius-plcy
Supported on all 7210 SAS platforms as described in this document
This command configures the number of times the router attempts to contact the RADIUS server for authentication if there are problems communicating with the server.
The no form of this command reverts to the default value.
retry 3
Specifies the retry count.
server index address ip-address secret key [hash|hash2] [auth-port auth-port] [acct-port acct-port] [type server-type]
no server index
config>system>security>radius
Supported on all 7210 SAS platforms as described in this document
This command adds a RADIUS server and configures the RADIUS server IP address, index, and key values.
Up to five RADIUS servers can be configured at one time. RADIUS servers are accessed in order from lowest to highest index for authentication requests until a response from a server is received. A higher indexed server is only queried if no response is received from a lower indexed server (which implies that the server is not available). If a response from a server is received, no other RADIUS servers are queried. It is assumed that there are multiple identical servers configured as backups and that the servers do not have redundant data.
The 7210 SAS-K 2F1C2T does not support IPv6 addresses for RADIUS servers.
The no form of the command removes the server from the configuration.
Specifies the index for the RADIUS server. The index determines the sequence in which the servers are queried for authentication requests. Servers are queried in order from lowest to highest index.
Specifies the IP address of the RADIUS server. Two RADIUS servers cannot have the same IP address. An error message is generated if the server address is a duplicate.
Specifies the secret key, up to 20 characters, to access the RADIUS server. This secret key must match the password on the RADIUS server.
Specifies the key is entered in an encrypted form. If the hash parameter is not used, the key is assumed to be in a non-encrypted, clear text form. For security, all keys are stored in encrypted form in the configuration file with the hash parameter specified.
Specifies the key is entered in a more complex encrypted form. If the hash2 parameter is not used, the less encrypted hash form is assumed.
[no] shutdown
config>system>security>radius
Supported on all 7210 SAS platforms as described in this document
This command administratively disables the RADIUS protocol operation. Shutting down the protocol does not remove or change the configuration other than the administrative state.
The operational state of the entity is disabled as well as the operational state of any entities contained within. Many objects must be shut down before they may be deleted.
The no form of this command administratively enables the protocol.
no shutdown
timeout seconds
no timeout
config>system>security>radius
Supported on all 7210 SAS platforms as described in this document
This command configures the number of seconds the router waits for a response from a RADIUS server.
The no form of this command reverts to the default value.
timeout 3
Specifies the number of seconds the router waits for a response from a RADIUS server, expressed as a decimal integer.
[no] use-default-template
config>system>security>radius
Supported on all 7210 SAS platforms as described in this document
This command specifies whether the RADIUS user template is actively applied to the RADIUS user if no VSAs are returned with the auth-accept from the RADIUS server. When enabled, the RADIUS user template is actively applied if no VSAs are returned with the auth-accept from the RADIUS server.
The no form of this command disables the command.