[no] accounting
config>system>security>radius
Supported on all 7210 SAS platforms as described in this document, including those configured in the access-uplink operating mode.
This command enables RADIUS accounting.
The no form of this command disables RADIUS accounting.
no accounting
accounting-port port
no accounting-port
config>system>security>radius
Supported on all 7210 SAS platforms as described in this document, including those configured in the access-uplink operating mode.
This command specifies a UDP port number on which to contact the RADIUS server for accounting requests.
The no form of this command reverts to the default value.
Specifies the UDP port number.
[no] authorization
config>system>security>radius
Supported on all 7210 SAS platforms as described in this document, including those configured in the access-uplink operating mode.
This command configures RADIUS authorization parameters for the system.
no authorization
port port
no port
config>system>security>radius
Supported on all 7210 SAS platforms as described in this document, including those configured in the access-uplink operating mode.
This command configures the TCP port number to contact the RADIUS server.
The no form of this command reverts to the default value.
port 1812
The TCP port number to contact the RADIUS server.
[no] radius
config>system>security
Supported on all 7210 SAS platforms as described in this document, including those configured in the access-uplink operating mode.
Commands in this context configure RADIUS authentication on the router.
Implement redundancy by configuring multiple server addresses for each router.
The no form of this command removes the RADIUS configuration.
retry count
no retry
config>system>security>radius
config>system>security>dot1x>radius-plcy
Supported on all 7210 SAS platforms as described in this document, including those configured in the access-uplink operating mode.
This command configures the number of times the router attempts to contact the RADIUS server for authentication if there are problems communicating with the server.
The no form of this command reverts to the default value.
retry 3
Specifies the retry count.
server index address ip-address secret key [hash|hash2] [auth-port auth-port] [acct-port acct-port] [type server-type]
no server index
config>system>security>radius
Supported on all 7210 SAS platforms as described in this document, including those configured in the access-uplink operating mode.
This command configures a RADIUS server and its IP address, index, and key values.
Up to five RADIUS servers can be configured at any one time. RADIUS servers are accessed in order from lowest to highest index for authentication requests until a response from a server is received. A higher indexed server is only queried if no response is received from a lower indexed server (which implies that the server is not available). If a response from a server is received, no other RADIUS servers are queried. It is assumed that there are multiple identical servers configured as backups and that the servers do not have redundant data.
The no form of this command removes the server from the configuration.
Specifies the index for the RADIUS server. The index determines the sequence in which the servers are queried for authentication requests. Servers are queried in order from lowest to highest index.
Specifies the IP address of the RADIUS server. Two RADIUS servers cannot have the same IP address. An error message is generated if the server address is a duplicate.
Specifies the secret key to access the RADIUS server. This secret key must match the password on the RADIUS server.
Specifies that the key is entered in an encrypted form. If the hash keyword is not used, the key is assumed to be in a non-encrypted, clear text form. For security, all keys are stored in encrypted form in the configuration file with the hash parameter specified.
Specifies that the key is entered in a more complex encrypted form. If the hash2 parameter is not used, the less encrypted hash form is assumed.
[no] shutdown
config>system>security>radius
Supported on all 7210 SAS platforms as described in this document, including those configured in the access-uplink operating mode.
This command administratively disables the RADIUS protocol operation. Shutting down the protocol does not remove or change the configuration other than the administrative state.
The operational state of the entity is disabled as well as the operational state of any entities contained within. Many objects must be shut down before they may be deleted.
The no form of this command administratively enables the protocol, which is the default state.
no shutdown
timeout seconds
no timeout
config>system>security>radius
Supported on all 7210 SAS platforms as described in this document, including those configured in the access-uplink operating mode.
This command configures the number of seconds the router waits for a response from a RADIUS server.
The no form of this command reverts to the default value.
3 seconds
Specifies the number of seconds the router waits for a response from a RADIUS server, expressed as a decimal integer.
[no] use-default-template
config>system>security>radius
Supported on all 7210 SAS platforms as described in this document, including those configured in the access-uplink operating mode.
This command specifies whether the RADIUS user template is actively applied to the RADIUS user if no VSAs are returned with the auth-accept from the RADIUS server. When enabled, the RADIUS user template is actively applied if no VSAs are returned with the auth-accept from the RADIUS server.
The no form of this command disables the command.