1 system configuration
(1) radius server ip: set the radius server ip address
(2) server port: set the udp destination port for authentication requests to the specified radius server.
(3) accounting port: set the udp destination port for accounting requests to the specified radius server.
(4) shared key: set an encryption key for use during authentication sessions with the specified radius server. this key must match the encryption key used on the radius server.
(5) nas, identifier: set the identifier for the radius client.
2 perport configuration:
there are four types for each port:
fu, force unauthorized: the specified port is required to be held in the unauthorized state.
fa, force authorized: the specified port is required to be held in the authorized state.
au, auto: the specified port is set to the authorized or unauthorized state in accordance with the outcome of an authentication exchange between the supplicant and the authentication server.
no, none: the specified port is required to be held in the authorized state.
3 misc configuration
(1). quiet period: set the period during which the port doesn’t try to acquire a supplicant.
(2). tx period: set the period the port waits to retransmit next eapol pdu during an authentication session.
(3). supplicant timeout: set the period of time the switch waits for a supplicant response to an eap request.
(4). server timeout: set the period of time the switch waits for a server response to an authentication request.
(5). max requests: set the number of authentication attemps that must time-out before authentication fails and the authentication session ends.
(6). reauth period: set the period of time after which clients connected must be re-authenticated.
