set administrators radius-auth

In the R81.10.X releases, this command is available starting from the R81.10.00 version.

Description

Configures the RADIUS authentication for administrators.

Note - You must configure the applicable RADIUS server. See Configuring RADIUS Servers.

See show administrators radius-auth.

Syntax

set administrators radius-auth enable use-radius-roles true

set administrators radius-auth enable use-radius-roles false [ permission <Administrator Role> ] [ use-radius-groups true radius-groups <Group1>,<Group2>,...,<GroupN> ]

set administrators radius-auth disable

Parameters

Parameter

Description

radius-auth

Enables (enable) or Disables (disable) the RADIUS authentication for administrators.

use-radius-roles

Specifies which RADIUS roles to use:

  • true - Use roles defined on the RADIUS server (this is the default).

  • false - Use default roles for RADIUS users (predefined on the appliance).

    Use the "permission" parameter to specify the predefined role.

permission

Specifies the default Administrator Role (when the value of the parameter "use-radius-roles" is "false"):

  • read-write - Super Administrator (this is the default).

  • networking - Networking Administrator.

  • access-policy - Access Policy Administrator.

  • remote-access - Remote Access Administrator.

  • readonly - Read-Only Administrator.

  • mobile - Mobile Administrator.

radius-groups

Specifies the RADIUS Groups to use for authentication (when the value of the parameter "use-radius-roles" is "false").

Notes:

  • You must enter the names of RADIUS Groups as configured on the RADIUS server.

  • To enter more than one RADIUS Group, enter their names separated by commas (without spaces).

Example Command

set administrators tacacs-auth enable use-tacacs-roles false permission mobile use-radius-groups true radius-groups MyGroup1,MyGroup2