radius-server user-name trust-server-request

Function

The radius-server user-name trust-server-request command configures the device to reply with a CoA/DM response packet that carries the same user name as that in a CoA/DM request packet.

The undo radius-server user-name trust-server-request command restores the default configuration.

By default, a CoA ACK response packet carries a locally configured user name, irrespective of whether a CoA request packet carries a user name. The locally configured user name is independent of the radius-server username original command configuration. A DM ACK response packet carries a user name only if a DM request packet carries a user name.

This command is supported only on the NetEngine 8000 F1A.

Format

radius-server user-name trust-server-request [ no-exist-policy attach-local { coa | dm } * ]

undo radius-server user-name trust-server-request [ no-exist-policy attach-local { coa | dm } * ]

Parameters

Parameter Description Value
no-exist-policy

Configures a user name adding policy if a CoA request packet does not carry a user name.

-
attach-local

Adds a locally stored user name in a CoA/DM response packet.

-
coa

Configures a user name adding policy for CoA response packets.

-
dm

Configures a user name adding policy for DM response packets.

-

Views

RADIUS server group view

Default Level

2: Configuration level

Task Name and Operations

Task Name Operations
radius write

Usage Guidelines

Usage Scenario

If the device connects to a RADIUS server and is required to add a user name to a CoA/DM response packet, run the radius-server user-name trust-server-request command on the device.

Configuration Impact

After the radius-server user-name trust-server-request command is run, a CoA/DM response packet carries the same user name as that in a CoA/DM request packet. If a CoA/DM request packet does not carry a user name, a CoA/DM response packet will not carry a user name.

After the radius-server user-name trust-server-request no-exist-policy attach-local coa command is run, if a CoA request packet does not carry a user name, a CoA response packet will carry a locally stored user name for the corresponding user.

After the radius-server user-name trust-server-request no-exist-policy attach-local dm command is run, if a DM request packet does not carry a user name, a DM response packet will carry a locally stored user name for the corresponding user.

Precautions

In VS mode, this command is supported only by the admin VS.

The RADIUS server group for which radius-server user-name trust-server-request command is configured must have been specified when you configure a RADIUS authorization server.

Example

# Configure the device to reply with a CoA/DM response packet that carries the same user name as that in a CoA/DM request packet.
<HUAWEI> system-view
[~HUAWEI] radius-server group group1
[*HUAWEI-radius-group1] radius-server user-name trust-server-request
Parent Topic: AAA and User Management Configuration (Access User)
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >