display radius scheme

Syntax

display radius scheme [ radius-scheme-name ] [ slot slot-number ] [ | { begin | exclude | include } regular-expression ]

View

Any view

Default level

2: System level

Parameters

radius-scheme-name: RADIUS scheme name.

slot slot-number: Specifies the RADIUS schemes on the switch by its device ID. The slot-number argument represents the device ID, which must be 1.

|: Filters command output by specifying a regular expression. For more information about regular expressions, see Fundamentals Configuration Guide.

begin: Displays the first line that matches the specified regular expression and all lines that follow.

exclude: Displays all lines that do not match the specified regular expression.

include: Displays all lines that match the specified regular expression.

regular-expression: Specifies a regular expression, a case-sensitive string of 1 to 256 characters.

Description

Use display radius scheme to display the configuration of RADIUS schemes.

If you do not specify any RADIUS scheme, the command displays the configuration of all RADIUS schemes.

Related commands: radius scheme.

Examples

# Display the configuration of all RADIUS schemes.

<Sysname> display radius scheme
------------------------------------------------------------------
SchemeName  : radius1
  Index : 0                           Type : extended
  Primary Auth Server:
    IP: 1.1.1.1                                  Port: 1812   State: active
    Encryption Key : ******
    Probe username : test
    Probe interval : 60 min
  Primary Acct Server:
    IP: 1.1.1.1                                  Port: 1813   State: active
    Encryption Key : ******
  Second Auth Server:
    IP: 1.1.2.1                                  Port: 1812   State: active
    Encryption Key : N/A
    Probe username : test
    Probe interval : 60 min
    IP: 1.1.3.1                                  Port: 1812   State: active
    Encryption Key : N/A
    Probe username : test
    Probe interval : 60 min
  Second Acct Server:
    IP: 1.1.2.1                                  Port: 1813   State: block
    Encryption Key : N/A
  Auth Server Encryption Key : ******
  Acct Server Encryption Key : N/A
  Accounting-On packet disable, send times : 50 , interval : 3s
  Interval for timeout(second)                            : 3
  Retransmission times for timeout                        : 3
  Interval for realtime accounting(minute)                : 12
  Retransmission times of realtime-accounting packet      : 5
  Retransmission times of stop-accounting packet          : 500
  Quiet-interval(min)                                     : 5
  Username format                                         : without-domain
  Data flow unit                                          : Byte
  Packet unit                                             : one
  NAS-IP address                                          : 1.1.1.1
  Attribute 25                                            : car
------------------------------------------------------------------
Total 1 RADIUS scheme(s).

Table 5: Command output

Field

Description

SchemeName

Name of the RADIUS scheme.

Index

Index number of the RADIUS scheme.

Type

Type of the RADIUS server: extended or standard.

Primary Auth Server

Information about the primary authentication server.

Primary Acct Server

Information about the primary accounting server.

Second Auth Server

Information about the secondary authentication server.

Second Acct Server

Information about the secondary accounting server.

IP

IP address of the server.

Port

Service port of the server. If no port configuration is performed, the default port number is displayed.

State

Status of the server: active or blocked.

Encryption Key

Shared key for secure authentication or accounting communication, displayed as a series of asterisks (******). If no shared key is configured, this field displays N/A.

This shared key is used only when no specific shared key is specified for the RADIUS server.

Probe username

Username used for server status detection.

Probe interval

Server status detection interval, in minutes.

Auth Server Encryption Key

Shared key for secure authentication communication, displayed as a series of asterisks (******). If no shared key is configured, this field displays N/A.

Acct Server Encryption Key

Shared key for secure accounting communication, displayed as a series of asterisks (******). If no shared key is configured, this field displays N/A.

Accounting-On packet disable

The accounting-on feature is disabled.

send times

Retransmission times of accounting-on packets.

interval

Interval at which the switch retransmits accounting-on packets.

Interval for timeout(second)

RADIUS server response timeout period, in seconds.

Retransmission times for timeout

Maximum number of attempts for transmitting a RADIUS packet to a single RADIUS server.

Interval for realtime accounting(minute)

Interval for real-time accounting, in minutes.

Retransmission times of realtime-accounting packet

Maximum number of accounting attempts.

Retransmission times of stop-accounting packet

Maximum number of stop-accounting attempts.

Quiet-interval(min)

Quiet interval for the primary server.

Username format

Format of the usernames to be sent to the RADIUS server.

Data flow unit

Unit for data flows sent to the RADIUS server.

Packet unit

Unit for packets sent to the RADIUS server.

NAS-IP address

Source IP address for RADIUS packets to be sent.

Attribute 25

Interprets RADIUS attribute 25 as the CAR parameters.