RADIUS Netlogin Keep Alive

Version 33.2.1 adds support for a keep alive message on the Netlogin RADIUS server. This checks for RADIUS server reachability in order to limit unnecessary re-authentication.

Supported Platforms

All platforms.

New CLI Commands:

The following new commands support this feature:

configure radius netlogin keep-alive

configure radius netlogin keep-alive interval

Modified CLI Command

The show radius command output displays Netlogin RADIUS server information (lines 20-21):
# show radius 
RADIUS Default State:   disabled
RADIUS Default Timeout: 3 seconds
RADIUS Algorithm: standard
RADIUS Retries: 3
RADIUS port bounce VSA: off
RADIUS dynamic-authorization: disabled
RADIUS TLS TCP Timeout: default
RADIUS TLS OCSP: off
RADIUS TLS OCSP Attributes:
  Nonce               : off
  Signer ocsp-nocheck : off
  Override Server URL : none
Switch Management RADIUS: disabled *
Switch Management RADIUS server connect time out: 3 seconds *
Switch Management RADIUS Accounting: disabled *
Switch Management RADIUS Accounting server connect time out: 3 seconds
Netlogin RADIUS: enabled
Netlogin RADIUS server connect time out: 3 seconds *
Netlogin RADIUS server keep alive: on
Netlogin RADIUS server keep alive interval: 60 seconds
Netlogin RADIUS server's last known reachability status: unreachable
Netlogin RADIUS Accounting: disabled *
Netlogin RADIUS Accounting server connect time out: 3 seconds
 
Primary Netlogin RADIUS server: Status is Active
    host name     :  
    IP address    :  1.2.3.4
    Server IP Port:  1812
    Protocol      :  UDP
    Client address:  10.127.2.33 (VR-Mgmt)
    Retries       :  3 *
    Timeout       :  3 *
    shared secret :  #$S4/Mj804b1yid8IYgRCNF2qdlGKD+A==
Access Requests   :  157        Access Accepts    :  0         
Access Rejects    :  0          Access Challenges :  0         
Access Retransmits:  117        Client timeouts   :  156       
Bad authenticators:  0          Unknown types     :  0         
Round Trip Time   :  0         
 
Legend: An asterisk (*) indicates a global value is in use.