Operation Manual – AAA & RADIUS & HWTACACS & EADH3C S7500 Series Ethernet SwitchesChapter 1 AAA & RADIUS & HWTACACSConfiguration1-30Caution:z When you use the local RADIUS authentication server function, the UDP portnumber for the authentication/authorization service must be 1645, the UDP portnumber for the accounting service is 1646, and the IP addresses of the servers mustbe set to the addresses of the switch.z The packet encryption key set by the local-server command with the key passwordparameter must be identical with the authentication/authorization packet encryptionkey set by the key authentication command in RADIUS scheme view.z The switch supports up to 16 local RADIUS authentication servers (including thedefault local RADIUS authentication server).1.4.10 Configuring the Timers of RADIUS ServersIf the switch gets no response from the RADIUS server after sending out a RADIUSrequest (authentication/authorization request or accounting request) and waiting for aperiod of time, it should retransmit the packet to ensure that the user can obtain theRADIUS service. This wait time is called response timeout time of RADIUS servers;and the timer in the switch system that is used to control this wait time is called theresponse timeout timer of RADIUS servers.For the primary and secondary servers (authentication/authorization servers, oraccounting servers) in a RADIUS scheme:When the switch fails to communicate with the primary server due to some servertrouble, the switch will actively exchange packets with the secondary server.After the time the primary server keeps in the block state exceeds the time set with thetimer quiet command, the switch will try to communicate with the primary server againwhen it receives a RADIUS request. If the primary server recovers, the switchimmediately restores the communication with the primary server instead ofcommunicating with the secondary server, and at the same time restores the primaryserver to the active state while keeping the state of the secondary server unchanged.To charge the users in real time, you should set the interval of real-time accounting.After the setting, the switch sends the accounting information of online users to theRADIUS server at regular intervals.