Chapter 11
Configuring RADIUS and TACACS+ Servers
Beginning in privileged EXEC mode, follow these steps to specify a vendor-proprietary RADIUS server
host and a shared secret text string:
Command
Step 1
configure terminal
Step 2
radius-server host {hostname | ip-address} non-standard
Step 3
radius-server key string
Step 4
end
Step 5
show running-config
Step 6
copy running-config startup-config
To delete the vendor-proprietary RADIUS host, use the no radius-server host {hostname | ip-address}
non-standard global configuration command. To disable the key, use the no radius-server key global
configuration command.
This example shows how to specify a vendor-proprietary RADIUS host and to use a secret key of rad124
between the bridge and the server:
BR(config)# radius-server host 172.20.30.15 nonstandard
BR(config)# radius-server key rad124
Displaying the RADIUS Configuration
To display the RADIUS configuration, use the show running-config privileged EXEC command.
OL-4059-01
Purpose
Enter global configuration mode.
Specify the IP address or host name of the remote
RADIUS server host and identify that it is using a
vendor-proprietary implementation of RADIUS.
Specify the shared secret text string used between the
bridge and the vendor-proprietary RADIUS server.
The bridge and the RADIUS server use this text string
to encrypt passwords and exchange responses.
The key is a text string that must match the
Note
encryption key used on the RADIUS server.
Leading spaces are ignored, but spaces within
and at the end of the key are used. If you use
spaces in your key, do not enclose the key in
quotation marks unless the quotation marks
are part of the key.
Return to privileged EXEC mode.
Verify your settings.
(Optional) Save your entries in the configuration file.
Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide
Configuring and Enabling RADIUS
11-15