Support User Manuals

ZyXEL Communications 3.1 Security Camera User Manual

Open as PDF

of 386

Chapter 30 AAA Server

ZyWALL (ZLD) CLI Reference Guide

254

30.2.8 aaa group server Command Example

The following example creates a RADIUS server group with two members and sets the secret key to

“12345678” and the timeout to 100 seconds. Then this example also shows how to view the

RADIUS group settings.

aaa group server radius group-name Enter the sub-command mode.

[no] case-sensitive Specify whether or not the server checks the username case. Set this to be

the same as the server’s behavior.

[no] server description

description

Sets the descriptive information for the RADIUS server group. You can use

up to 60 printable ASCII characters. The

no command clears the setting.

[no] server group-attribute <1-

255>

Sets the value of an attribute that the ZyWALL is used to determine to which

group a user belongs.

This attribute’s value is called a group identifier. You can add ext-group-

user user objects to identify groups based on different group identifier

values.

For example, you could configure attributes 1,10 and 100 and create a ext-

group-user user object for each of them. The

no command clears the

setting.

[no] server host radius_server Enter the IP address (in dotted decimal notation) or the domain name of a

RADIUS server to add to this server group. The

no command clears this

setting.

[no] server key secret Sets a password (up to 15 alphanumeric characters) as the key to be shared

between the RADIUS server(s) and the ZyWALL. The

no command clears

this setting.

[no] server timeout time Sets the search timeout period (in seconds). Enter a number between 1 and

300. The

no command clears this setting and set this to the default setting

of 5 seconds.

Table 152 aaa group server radius Commands (continued)

COMMAND DESCRIPTION

Router# configure terminal

Router(config)# aaa group server radius RADIUSGroup1

Router(group-server-radius)# server host 192.168.1.100 auth-port 1812

Router(group-server-radius)# server host 172.23.22.100 auth-port 1812

Router(group-server-radius)# server key 12345678

Router(group-server-radius)# server timeout 100

Router(group-server-radius)# exit

Router(config)# show aaa group server radius RADIUSGroup1

key : 12345678

timeout : 100

description :

group attribute : 11

No. Host Member Auth. Port

==========================================================================

1 192.168.1.100 1812

2 172.23.22.100 1812

previous next