Reference Guide
----- ----- ------- -------- ----------- ----- ---------------------- ----
1 ttyS0 admin sysadmin login/clish . - 2016-04-14 02:06:00
Security commands
aaa authentication
Congures the AAA authentication method for user access.
Syntax
aaa authentication {local | radius}
Parameters
• local — Enter to use local (RBAC) access control.
• radius — Enter to use the RADIUS server congured with the radius-server host command.
Default Not congured
Command Mode CONFIGURATION
Usage Information The no version of this command resets the value to the default.
Example
OS10(config)# aaa authentication radius
Supported Releases 10.2.0E or later
radius-server host
Congures the RADIUS server hostname.
Syntax
radius-server host [hostname | ip-address] [auth-port port-number | key
authentication-key]
Parameters
• hostname — Enter the name of the RADIUS server host.
• ip-address — Enter the IPv4 (A.B.C.D) or IPv6 (x:x:x:x::x) address of the RADIUS server host.
• auth-port port-number — (Optional) Enter the UDP authentication port number (0 to 65535, default
1812)
• key authentication-key — (Optional) Enter the authentication key and encryption type known to both
the RADIUS client and server. Enter 0 for plain-text or 7 for encrypted text, and a string for the key (up to 42
characters).
• retransmit retries — (Optional) Enter the number of retransmission attempts (0 to 100, default 3).
• timeout seconds — (Optional) Enter the time in seconds the device waits for a reply from the RADIUS
server (0 to 1000, default 5).
Default Not congured
Command Mode CONFIGURATION
Usage Information The key must match the key congured on the RADIUS server host. The retransmit retries parameter
overwrites the radius-server retransmit command. By default, the key, retransmit, and timeout
parameters use the global values of the RADIUS server. The no version of this command resets the value to the
default.
Example
OS10(config)# radius-server host 1.5.6.4 key secret1 retransmit 2
366 System management