[Contents] [Prev] [Next] [Index] [Report an Error] [No Frames]


Creating RADIUS Peers

RADIUS peers are instances of RADIUS servers. If you define multiple servers, the SAE uses them in cases of failover or as alternate routers for load-balancing purposes.

Each RADIUS plug-in requires a default peer. Configure a RADIUS peer before you configure the plug-in.

RADIUS peers are configured in the peer group for each RADIUS plug-in. Use the following configuration statements to configure a RADIUS peer:

shared sae configuration plug-ins pool name radius-accounting peer-group name {
server-address server-address;
server-port server-port;
secret secret;
}

shared sae configuration plug-ins pool name radius-authentication peer-group name {
server-address server-address;

server-port server-port;

secret secret;
}

shared sae configuration plug-ins pool name custom-radius-accounting peer-group
name {
server-address server-address;
server-port server-port;
secret secret;
}

shared sae configuration plug-ins pool name custom-radius-authentication peer-group
name {
server-address server-address;

server-port server-port;

secret secret;
}

shared sae configuration plug-ins pool name flex-radius-accounting peer-group name {
server-address server-address;

server-port server-port;

secret secret;
}

shared sae configuration plug-ins pool name flex-radius-authentication peer-group
name {
server-address server-address;

server-port server-port;

secret secret;
}

To create a RADIUS peer:

  1. From configuration mode, access the RADIUS peer configuration for the plug-in that you are configuring. In this sample procedure, the RADIUS peer is configured in the west-region SAE group.
  2. user@host# edit shared sae group west-region configuration plug-ins pool
    basicRadius radius-accounting peer-group peer1
    
    
    
  3. Configure the IP address of the RADIUS server to which the SAE sends accounting data.
  4. [edit shared sae group west-region configuration plug-ins pool basicRadius
    radius-accounting peer-group peer1]
    
    user@host# set server-address server-address
    
    
    
  5. Configure the port used for RADIUS packets.
  6. [edit shared sae group west-region configuration plug-ins pool basicRadius
    radius-accounting peer-group peer1]
    
    user@host# set server-port server-port
    
    
    
  7. Configure the password that is shared with the RADIUS server. You must configure the same password on the RADIUS server.
  8. [edit shared sae group west-region configuration plug-ins pool basicRadius
    radius-accounting peer-group peer1]
    
    user@host# set secret secret
    
    
    
  9. (Optional) Verify your configuration.
  10. [edit shared sae group west-region configuration plug-ins pool basicRadius
    radius-accounting peer-group peer1]
    
    user@host# show
    
    server-address 10.10.1.1;
    
    server-port 1812;
    
    secret ********;
    

Related Information

For additional information, see the following source:


[Contents] [Prev] [Next] [Index] [Report an Error] [No Frames]