Administrator Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S4048T-ON

1361

RADIUS Commands

The following RADIUS commands are supported by Dell EMC Networking OS.

aaa radius auth-method

Configure the authentication method to use with RADIUS for user access.

Syntax

aaa radius auth-method {pap | mschapv2}

To undo the RADIUS authentication method configuration, use the no aaa radius auth-method command.

Parameters

pap Enter the keyword pap to use the Password Authentication Protocol (PAP) for RADIUS

authentication. This protocol uses the username and password attributes in the access-

request message sent to the RADIUS server.

mschapv2 Enter the keyword mschapv2 to use the Microsoft Challenge-Handshake Authentication

Protocol (MS-CHAPv2) for RADIUS authentication. This protocol is considered to be

more secure than PAP and uses mutual authentication based on a random challenge and

challenge response.

Defaults PAP

Command Modes CONFIGURATION

Command History

This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC

Networking OS Command Line Reference Guide.

Version Description

9.11(2.0P1) Introduced the command on all Dell EMC Networking OS platforms.

Usage Information

If an authentication method is not configured using this command, then PAP is used for authentication with the

RADIUS server.

You can configure the RADIUS authentication method to access the switch using the following applications:

Console, Telnet, SSH, REST, and OMI.

client

Configures trusted DAC clients.

Syntax

client {ipv4-addr | ipv6-addr | hostname} [vrf vrf-name] [key [encryption-type]

key]

To undo the DAC client configuration, enter the no client host command.

Defaults If VRF is not configured, default VRF is considered.

Parameters

ipv4–addr Enter the keyword ipv4–addr to specify the IPv4 address of the DAC.

ipv6–addr Enter the keyword ipv6–addr to specify the IPv6 address of the DAC.

hostname Enter the keyword hostname to enter the name of the host.

vrf

vrf-name

Enter the keyword vrf followed by the name of the VRF to associate a VRF with the

client.

key (Optional) Enter the keyword key to specify an encryption key.

encryption-type (Optional) Enter either 0 or 7 as the encryption type for the specified key. The options

are:

• 0 – implies that the key is not encrypted and is stored as clear text.

• 7 – implies that the key is encrypted and hidden.

1364 Security