1.
RADIUS
配置
RADIUS
客户端配置:
思科设备例子:
交换机和路由器的配置:
aaa new-model
aaa authentication login auth group radius local //
配置登陆认证的优先级
radius-server host 139.123.252.245 auth-port 1812 acct-port 1813
//
配置
RADIUS
服务器
IP
地址和端口。
radius-server host 139.123.252.244 auth-port 1812 acct-port 1813
radius-server retransmit 3
radius-server key ZDBF%51 //
配置密码
line vty 0 4
login authentication auth
防火墙
PIX
的配置:
aaa-server radius-authport 1812
aaa-server radius-acctport 1813
aaa-server TACACS+ protocol tacacs+
aaa-server RADIUS protocol radius
aaa-server rsa_radius protocol radius
aaa-server auth protocol radius
aaa-server auth (inside) host 192.168.41.226 ZDBF%51 timeout 10
aaa-server LOCAL protocol tacacs+
aaa-server radius protocol radius
aaa authentication telnet console auth
华为设备例子:
VRP3.X
版本的配置:
radius scheme auth
primary authentication 192.168.41.226 1812 //
配置主用服务器
IP
地址和端口
primary accounting 192.168.41.226 1813
secondary authentication 192.168.41.227 1812 //
配置备用服务器
IP
地址和端口
secondary accounting 192.168.41.227 1813
key authentication ZDBF%51 //
配置密码
key accounting ZDBF%51