How to Configure AAA Services
Configuring RADIUS Server Groups
This task configures RADIUS server groups.
The user can enter one or more server commands. The server command specifies the hostname or IP
address of an external RADIUS server along with port numbers. When configured, this server group can
be referenced from the AAA method lists (used while configuring authentication, authorization, or
accounting). (See the
Prerequisites
For configuration to succeed, the external server should be accessible at the time of configuration.
SUMMARY STEPS
1.
2.
3.
4.
5.
6.
7.
8.
DETAILED STEPS
Command or Action
Step 1
configure
Example:
RP/0/RP0/CPU0:router# configure
Step 2
aaa group server radius group-name
Example:
RP/0/RP0/CPU0:router(config)# aaa group server
radius radgroup1
Step 3
server {hostname | ip-address} [auth-port
port-number] [acct-port port-number]
Example:
RP/0/RP0/CPU0:router(config-sg-radius)# server
192.168.20.0
Cisco IOS XR System Security Configuration Guide for the Cisco CRS-1 Router
SC-36
"Method Lists"
configure
aaa group server radius group-name
server {host-name | ip-address} [auth-port port-number] [acct-port port-number]
Repeat Step
3.
for every external server to be added to the server group named in Step
server-private {hostname | ip-address} [auth-port port-number] [acct-port port-number]
[timeout seconds] [retransmit retries] [key string]
deadtime minutes
end
or
commit
show radius server-groups [group-name [detail]]
Configuring AAA Services on Cisco IOS XR Software
section.)
Purpose
Enters global configuration mode.
Groups different server hosts into distinct lists and enters
the server group configuration mode.
Specifies the hostname or IP address of an external
RADIUS server.
After the server group is configured, it can be
•
referenced from the AAA method lists (used while
configuring authentication, authorization, or
accounting).
2.
OL-20382-01