configure radius dynamic-authorization server client-ip

configure radius dynamic-authorization index server [host_ipaddr | host_ipV6addr | hostname] client-ip [client_ipaddr | client_ipV6addr] {vr vr_name} {shared-secret {encrypted} secret}

Description

This command configures up to eight RADIUS (Remote Authentication Dial In User Service) servers with dynamic authorization.
Note

Note

It is recommended to enable loopback mode on the VLAN (Virtual LAN) associated with RADIUS if the RADIUS connectivity is established using a front panel port on a SummitStack.

Syntax Description

dynamic-authorization Specifies RADIUS dynamic authorization.
index RADIUS server index. Range: 1–2147483641.
serverhost_ipaddrhost_ipV6addr Server IPv4 address in either IPv4 (host_ipaddr) or IPv6 (host_ipV6addr) format.
hostname The host name of the server being configured.
client-ip client_ipaddrclient_ipV6addr Client address in either IPv4 (client_ipaddr) or IPv6 format (client_ipV6addr).
vr vr_name Specifies the virtual router on which the client IP is located.
Note: User-created VRs are supported only on the platforms listed for this feature in the ExtremeXOS 22.6 Feature License Requirements document.
shared-secret Shared secret.
secret Secret string.
encrypted Password is encrypted.

Default

The virtual router used is VR-Mgmt, the management virtual router.

Usage Guidelines

Use this command to specify RADIUS server information.

Use of the hostname parameter requires that DNS be enabled.

The RADIUS server defined by this command is used for user name authentication and CLI command authentication.

Example

The following example configures a RADIUS dynamic authorization server with server index 100 on host "radius1" using the default UDP port (1812) for use by the RADIUS client on switch 10.10.20.30 using a virtual router interface of VR-Default:

configure radius dynamic-authorization 100 server radius1 client-ip 10.10.20.30 vr vr-Default

History

This command was first available in ExtremeXOS 22.1.

Platform Availability