How to config Radius Realm

  • 0
  • 1
  • Question
  • Updated 1 year ago
  • Answered

Form Version 16.x show radius thate has Realm information

Realm :Any

from config radius command no include realm parameter.

Anyone konw how to set this parameter


Photo of Li Ping Hsu

Li Ping Hsu

  • 280 Points 250 badge 2x thumb

Posted 3 years ago

  • 0
  • 1
Photo of Karthik Mohandoss

Karthik Mohandoss, Employee

  • 5,514 Points 5k badge 2x thumb
As per the command reference guide

"Switch management and network login use the same primary and secondary RADIUS servers for
authentication (only if the realm is not specified in the command).,"

The below command should configure the server for both Netlogin and mgmt-access
"configure radius primary server <serverip> client-ip <VLAN IP> shared-secret 1234"
Photo of Karthik Mohandoss

Karthik Mohandoss, Employee

  • 5,514 Points 5k badge 2x thumb
Hi Li,

I guess i misunderstood your question. may be here is the command you are looking for.

"configure radius 1 server 1.1.1.2 client-ip 1.1.1.1 shared-secret 1234 vr "VR-Mgmt""

Here in the above command i have only specified the index and not the realm and this server 1.1.1.2 is configured to Realm ANY

**Truncated output of "show radius**
Radius server     :  1 Status is Active
    host name     :
    IP address    :  1.1.1.2
    Server IP Port:  1812
    Client address:  1.1.1.1 (VR-Mgmt)
    Retries       :  3 *
    Timeout       :  3 *
    Realm         :  Any
    shared secret :  #$9D35STS5EPKKghX+lPY=
Access Requests   :  0          Access Accepts    :  0
Access Rejects    :  0          Access Challenges :  0
Access Retransmits:  0          Client timeouts   :  0
Bad authenticators:  0          Unknown types     :  0
Round Trip Time   :  0

I Hope this helps.
Photo of Karthik Mohandoss

Karthik Mohandoss, Employee

  • 5,514 Points 5k badge 2x thumb
"configure radius netlogin 1 server 1.1.1.2 client-ip 1.1.1.1 shared-secret 1234 vr "VR-Mgmt""

And if you add the netlogin key to the command before the index it will set the Realm to Netlogin

**Truncated output of "show radius**
Radius server     :  1 Status is Active
    host name     :
    IP address    :  1.1.1.2
    Server IP Port:  1812
    Client address:  1.1.1.1 (VR-Mgmt)
    Retries       :  3 *
    Timeout       :  3 *
    Realm         :  Netlogin
    shared secret :  #$9D35STS5EPKKghX+lPY=
Access Requests   :  0          Access Accepts    :  0
Access Rejects    :  0          Access Challenges :  0
Access Retransmits:  0          Client timeouts   :  0
Bad authenticators:  0          Unknown types     :  0
Round Trip Time   :  0
Photo of Corrine Johnston

Corrine Johnston

  • 60 Points
GOODNESS

U SMART