Installation manual

ManualsBrandsQuidway ManualsComputer equipmentS3000-EI Series

241

242

243

244

245

246

247

248

249

250

Operation Manual - Security

Quidway S3000-EI Series Ethernet Switches

Chapter 2 AAA and RADIUS Protocol

Configuration

Huawei Technologies Proprietary

2-24

elivered VLAN.

de to string and the

. It mainly

RADIUS server of ISP.

1) The username may not be in the userid@isp-name format or NAS has not been

configured with a default ISP domain. Please use the username in proper format

lt ISP domain on NAS.

een configured in the RADIUS server database. Check

make sure that the configuration information of the user does

t in the database.

The user may have input a wrong password. So please make sure that the

supplicant inputs the correct password.

cryption keys of RADIUS server and NAS may be different. Please check

lly and make sure that they are identical.

ough pinging RADIUS from NAS. So please ensure

the normal communication between NAS and RADIUS.

Fault two: RADIUS packet cannot be transmitted to RADIUS server.

nk layer) connecting NAS and

ay not work well. So please ensure the lines work well.

2) The IP address of the corresponding RADIUS server may not have been set on

r IP address for RADIUS server.

3) UDP ports of authentication/authorization and accounting services may not be set

consistent with the ports provided by RADIUS

nnot send

1) The accounting port number may be set improperly. Please set a proper number.

# Configure name of the d

[Quidway-vlan100] name test

5) Configure on the Windows IAS server the VLAN delivery mo

name of the delivered VLAN to “test”.

2.6 AAA and RADIUS Protocol Fault Diagnosis and

Troubleshooting

RADIUS protocol of TCP/IP protocol suite is located on the application layer

specifies how to exchange user information between NAS and

So it is very likely to be invalid.

z Fault one: User authentication/authorization always fails

Troubleshooting:

and configure the defau

2) The user may have not b

the database and

exis

4) The en

carefu

5) There might be some communication fault between NAS and RADIUS server,

which can be discovered thr

Troubleshooting:

1) The communication lines (on physical layer or li

RADIUS server m

NAS. Please set a prope

properly. So make sure they are

server.

z Fault three: After being authenticated and authorized, the user ca

charging bill to the RADIUS server.

Troubleshooting: