Enabling AAA system accounting with 802.1x accounting allows system reload events to be sent to the accounting RADIUS server
for logging. The server can then infer that all active 802.1x sessions are closed.
Note
|
In Cisco IOS XE Denali 16.3.x and Cisco IOS XE Everest 16.6.x, periodic AAA accounting updates are not supported. The switch
does not send periodic interim accounting records to the accounting server. Periodic AAA accounting updates are available
in Cisco IOS XE Fuji 16.9.x and later releases.
|
Because RADIUS uses the unreliable UDP transport protocol, accounting messages might be lost due to poor network conditions.
If the switch does not receive the accounting response message from the RADIUS server after a configurable number of retransmissions
of an accounting request, this system message appears:
Accounting message %s for session %s failed to receive Accounting Response.
When the stop message is not sent successfully, this message appears:
00:09:55: %RADIUS-4-RADIUS_DEAD: RADIUS server 172.20.246.201:1645,1646 is not responding.
Note
|
You must configure the RADIUS server to perform accounting tasks, such as logging start, stop, and interim-update messages
and time stamps. To turn on these functions, enable logging of “Update/Watchdog packets from this AAA client” in your RADIUS
server Network Configuration tab. Next, enable “CVS RADIUS Accounting” in your RADIUS server System Configuration tab.
|
Beginning in privileged EXEC mode, follow these steps to configure 802.1x accounting after AAA is enabled on your switch.
This procedure is optional.