To specify a RADIUS server host, use the
radius-server host global configuration command. Use the no form of this
command to delete the specified RADIUS host. The syntax is
Rtr1(config)#radius-server host {hostname | ip-address} [auth-port port-number]
[acct-port port-number] [timeout seconds]
[retransmit retries] [key string]
[alias{hostname | ip-address}]
Rtr1(config)#no
radius-server host {hostname | ip-address} [auth-port port-number]
[acct-port port-number] [timeout
seconds] [retransmit retries] [key
string]
Use multiple radius-server host commands to specify multiple
hosts. The software searches for hosts in the order in which they’re
specified.
The following example specifies host1 as the RADIUS server and
uses default ports for both accounting and authentication.
Rtr1(config)#aaa new-model
Rtr1(config)#radius-server host host1.domain.com
The next example defines port 12 as the destination port for
authentication requests and port 16 as the destination port for accounting
requests on a RADIUS host named 192.168.1.4. Because entering a line resets all
the port numbers, you must specify a host and configure both the accounting and
authentication ports on a single line.
Rtr1(config)#aaa new-model
Rtr1(config)#radius-server host 192.168.1.4 auth-port 12 acct-port 16
To use separate servers for accounting and authentication, use the
zero port value, as appropriate. The following example specifies that RADIUS
server192.168.1.4 be used for accounting, but not for authentication, and that
RADIUS server host1 be used for authentication, but not for accounting:
Rtr1(config)#aaa new-model
Rtr1(config)#radius-server host 192.168.1.4 auth-port 0
Rtr1(config)#radius-server host host1.domain.com acct-port 0
Sections
Comments (0 posted)
Syndication
