Installation guide
39
Enhancements
Release Y.11.16 Enhancements
Figure 14. Example Listing of Active RADIUS Accounting Sessions on the Switch
Changing RADIUS-Server Access Order
The switch tries to access RADIUS servers according to the order in which their IP addresses are
listed by the show radius command. Also, when you add a new server IP address, it is placed in the
highest empty position in the list.
Adding or deleting a RADIUS server IP address leaves an empty position, but does not change the
position of any other server addresses in the list. For example if you initially configure three server
addresses, they are listed in the order in which you entered them. However, if you subsequently
remove the second server address in the list and add a new server address, the new address will be
placed second in the list.
Thus, to move a server address up in the list, you must delete it from the list, ensure that the position
to which you want to move it is vacant, and then re-enter it. For example, suppose you have already
configured the following three RADIUS server IP addresses in the switch:
Figure 15. Search Order for Accessing a RADIUS Server
ProCurve(config)# show accounting sessions
Active Accounted actions on SWITCH, User (n/a) Priv (n/a),
Acct-Session-Id 0x013E00000006, System Accounting record, 1:45:34 Elapsed
system event 'Accounting On
RADIUS server IP addresses listed in the order
in which the switch will try to access them. In this
case, the server at IP address 10.10.10.1 is first.
Note: If the switch successfully accesses the
first server, it does not try to access any other
servers in the list, even if the client is denied
access by the first server.
ProCurve(config)# show radius
Status and Counters - General RADIUS Information
Deadtime(min) : 0
Timeout(secs) : 5
Retransmit Attempts : 3
Global Encryption Key : 10keyq
Auth Acct
Server IP Addr Port Port Encryption Key
--------------- ----- ----- --------------
10.10.10.1 1812 1813
10.10.10.2 1812 1813
10.10.10.3 1812 1813