The Schwarrisons

KB0021 - Enable Radius Authentication for Comware 7

Stephen Schwetz
1 min read
KB0021 - Enable Radius Authentication for Comware 7

 have over the course of my employment on numerous occasions needed to add radius authentication to comware based switches and routers. This is the current comware 7 template that I use for this

system-view

radius scheme clearpass-scheme
 server-type extended
 primary authentication <primary_radius_server_ip>
 primary accounting <primary_radius_server_ip>

 !secondary authentication <secondary_radius_server_ip>
 !secondary accounting <secondary_radius_server_ip>
 key authentication <radius_key>
 key accounting <radius_key>
 user-name-format without-domain

 nas-ip <network_device_management_ip>
!

domain clearpass
 authentication login radius-scheme clearpass-scheme
 authorization login radius-scheme  clearpass-scheme
 accounting login radius-scheme radius-scheme
 access-limit disable
 state active
 idle-cut disable
 self-service-url disable
!


user-interface vty 0 15
 undo user privilege level 
 authentication-mode scheme
!
!# WARNING: Ensure RADIUS server is working properly prior activating this
domain default enable radius-domain
!
return
About the author
Stephen Schwetz

Stephen Schwetz

Read next

KB0020 - Sort Processes by Resource Usage

KB0018 - Back up and restore vCenter Server Appliance vPostgres database

KB0017 - vCenter - Signing certificate is not valid

KB0016 - Could not connect to one or more vCenter Server Systems: "https://vCenterFQDN:443/sdk" error in the vSphere Client

KB0015 - Avoiding Password Expiry in NSX Manager and Edges

The Schwarrisons

Herping the derp!!

The Schwarrisons

Great! You’ve successfully signed up.

Welcome back! You've successfully signed in.

You've successfully subscribed to The Schwarrisons.

Your link has expired.

Success! Check your email for magic link to sign-in.

Success! Your billing info has been updated.

Your billing was not updated.