|
|
|
When a user attempts to log in to the Avaya switch, the switch first checks the local user accounts for the user name and password. If found, the user is logged in using the local settings for that account.
If no local account is found and RADIUS is enabled and configured, the switch sends an Access-Request message to the primary RADIUS server in an attempt to authenticate the user remotely. If the user login is found and correct, then the RADIUS server responds with an Access-Accept message that includes the user privileges. If the user account has the appropriate management type (for example, Web if he or she is trying to log in to the Web Agent), the user is granted access.
If the user login is incorrect or does not exist, then the RADIUS server sends an Access-Reject message to the switch and the user is denied access to the switch.
If the primary RADIUS server does not respond to the Access-Request message, the switch attempts to use the secondary server if it is configured. On subsequent retries, the switch alternates between the primary and secondary servers. If no secondary server is configured, the switch continues to try the primary server.
The switch waits the number of seconds specified in the retry interval and tries as many times as specified in the retry time.
|
|
|