Chapter 34
Configuring RADIUS and TACACS+
S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m
Command
Step 6
switch(config)# radius-server host 10.10.0.0
key 0 abcd
switch(config)# radius-server host 10.10.0.0
key 4 da3Asda2ioyuoiuH
To specify the host RADIUS server IPv6 address and other options, follow these steps:
Command
Step 1
switch# config t
Step 2
switch(config)# radius-server host
2001:0DB8:800:200C::417A Key HostKey
Step 3
switch(config)# radius-server host
2001:0DB8:800:200C::417A auth-port 2003
Step 4
switch(config)# radius-server host
2001:0DB8:800:200C::417A acct-port 2004
Step 5
switch(config)# radius-server host
2001:0DB8:800:200C::417A accounting
Step 6
switch(config)# radius-server host
2001:0DB8:800:200C::417A key 0 abcd
switch(config)# radius-server host
2001:0DB8:800:200C::417A key 4
da3Asda2ioyuoiuH
To specify the host RADIUS server DNS name and other options, follow these steps:
Command
Step 1
switch# config t
Step 2
switch(config)# radius-server host radius2
key HostKey
OL-18084-01, Cisco MDS NX-OS Release 4.x
Purpose
Specifies a clear text key for the specified
server. The key is restricted to 64 characters.
Specifies an encrypted key for the specified
server. The key is restricted to 64 characters.
Purpose
Enters configuration mode.
Specifies the preshared key for the selected
RADIUS server. This key overrides the key
assigned using the radius-server key
command. In this example, the host is
2001:0DB8:800:200C::417A and the key is
HostKey.
Specifies the destination UDP port number to
which the RADIUS authentication messages
should be sent. In this example, the host is
2001:0DB8:800:200C::417A and the
authentication port is 2003. The default
authentication port is 1812, and the valid range
is 0 to 65366.
Specifies the destination UDP port number to
which RADIUS accounting messages should be
sent. The default accounting port is 1813, and
the valid range is 0 to 65366.
Specifies this server to be used only for
accounting purposes.
If neither the authentication nor the
Note
accounting options are specified, the
server is used for both accounting and
authentication purposes.
Specifies a clear text key for the specified
server. The key is restricted to 64 characters.
Specifies an encrypted key for the specified
server. The key is restricted to 64 characters.
Purpose
Enters configuration mode.
Specifies the preshared key for the selected
RADIUS server. This key overrides the key
assigned using the radius-server key
command. In this example, the host is radius2
and the key is HostKey.
Cisco MDS 9000 Family CLI Configuration Guide
Configuring RADIUS
34-9