Monitoring RADIUS Server Information

Purpose

Display RADIUS server information.

Use with the optional accounting, authentication, dynamic-request, route-download, or pre-authentication keywords to limit output to the specific type of server.

Action

To display RADIUS server configuration information:

host1#show radius servers
               RADIUS Authentication Configuration
               -----------------------------------
                Udp    Retry             Maximum    Dead
 IP Address     Port   Count   Timeout   Sessions   Time   Secret  Status
 -------------   ----   -----   -------   --------  ----  ------  ------
 172.28.30.117   1812   3        3         255      30     radius  dead
 172.28.30.118   1812   3        3         255      30     radius  active
 172.28.30.119   1812   3        3         255      30     radius  alive
                 RADIUS Accounting Configuration
                 -------------------------------
                Udp    Retry             Maximum    Dead
 IP Address     Port   Count   Timeout   Sessions   Time   Secret  Status
 -------------  ----   -----   -------  --------   ----    ------  ------
 172.28.30.117   1813   3       3         255       30     radius  dead
 172.28.30.118   1813   3       3         255       30     radius  active
 172.28.30.119   1813   3       3         255       30     radius  alive 
               RADIUS Pre-Authentication Configuration
               ---------------------------------------
                Udp    Retry             Maximum    Dead
 IP Address     Port   Count   Timeout   Sessions   Time   Secret  Status
-------------   ----   -----   -------   --------  ----   ------  ------
 172.28.30.117   1812   3       3         255       30     radius  dead
 172.28.30.118   1812   3       3         255       30     radius  active
 172.28.30.119   1812   3       3         255       30     radius  alive
               RADIUS Route-Download Configuration               
               -----------------------------------               
                Udp    Retry             Maximum    Dead         
 IP Address     Port   Count   Timeout   Sessions   Time   Secret  Status
-------------   ----   -----   -------   --------   ----   ------  ------
192.168.30.16   1812   3       3         255        30     radius  dead
192.168.30.17   1812   3       3         255        30     radius  active
192.168.30.18   1812   3       3         255        30     radius  alive

Meaning

If a RADIUS server was never configured on the virtual router, the command displays the following message:

host1#show radius servers
no radius servers configured

If a RADIUS server was configured previously and then removed on the virtual router, the command displays the following information:

host1#show radius servers
               RADIUS Authentication Configuration
               -----------------------------------
                Udp    Retry             Maximum    Dead
 IP Address     Port   Count   Timeout   Sessions   Time   Secret  Status
 -------------   ----   -----   -------   --------  ----  ------  ------
                 RADIUS Accounting Configuration
                 -------------------------------
                Udp    Retry             Maximum    Dead
 IP Address     Port   Count   Timeout   Sessions   Time   Secret  Status
 -------------  ----   -----   -------  --------   ----    ------  ------
               RADIUS Pre-Authentication Configuration
               ---------------------------------------
                Udp    Retry             Maximum    Dead
 IP Address     Port   Count   Timeout   Sessions   Time   Secret  Status
-------------   ----   -----   -------   --------  ----   ------  ------
               RADIUS Route-Download Configuration               
               -----------------------------------               
                Udp    Retry             Maximum    Dead         
 IP Address     Port   Count   Timeout   Sessions   Time   Secret  Status
-------------   ----   -----   -------   --------   ----   ------  ------

Table 30 lists the show radius servers command output fields.

Table 30: show radius servers Output Fields

Field Name

Field Description

IP Address

IP address of RADIUS server

Udp Port

Number of the UDP port of the RADIUS server

Retry Count

Maximum number of times that the router retransmits a RADIUS packet to the RADIUS server

Timeout

Interval (in seconds) before the router retransmits a RADIUS packet to the RADIUS server

Maximum Sessions

Number of outstanding requests to the RADIUS server

Dead Time

Amount of time to remove the authentication server or accounting server from the available list when a timeout occurs

Secret

Configured authentication server or accounting server secret

Status

Status of the configured RADIUS server:

  • dead-The status displayed if the server does not respond within the configured number of retransmit counts, and if Dead Time is configured to a non-zero value.
  • active-The status displayed of the earliest configured, non-dead server if the server is accessed using the direct algorithm. The status displayed of all non-dead servers if the server is accessed using the round-robin algorithm.
  • alive-The status displayed of all non-dead servers except the earliest configured non-dead server, if the server is accessed using the direct algorithm. The status of none of the servers if the server is accessed using the round-robin algorithm.

Related Documentation