EXEC Privilege mode
enable
or
enable privilege-level
If you do not enter a privilege level, Dell Networking OS sets it to 15 by default.
•
Move to a lower privilege level.
EXEC Privilege mode
disable
level-number
•
level-number
: The level-number you wish to set.
If you enter
disable
without a level-number, your security level is 1.
RADIUS
Remote authentication dial-in user service (RADIUS) is a distributed client/server protocol.
This protocol transmits authentication, authorization, and configuration information between a central RADIUS server and a RADIUS client
(the Dell Networking system). The system sends user information to the RADIUS server and requests authentication of the user and
password. The RADIUS server returns one of the following responses:
•
Access-Accept
— the RADIUS server authenticates the user.
•
Access-Reject
— the RADIUS server does not authenticate the user.
If an error occurs in the transmission or reception of RADIUS packets, you can view the error by enabling the
debug radius
command.
Transactions between the RADIUS server and the client are encrypted (the users’ passwords are not sent in plain text). RADIUS uses UDP
as the transport protocol between the RADIUS server host and the client.
For more information about RADIUS, refer to RFC 2865,
Remote Authentication Dial-in User Service
.
RADIUS Authentication
Dell Networking OS supports RADIUS for user authentication (text password) at login and can be specified as one of the login
authentication methods in the
aaa authentication login
command.
When configuring AAA authorization, you can configure to limit the attributes of services available to a user. When you enable
authorization, the network access server uses configuration information from the user profile to issue the user's session. The user’s access
is limited based on the configuration attributes. RADIUS exec-authorization stores a user-shell profile and that is applied during user login.
You may name the relevant named-lists with either a unique name or the default name. When you enable authorization by the RADIUS
server, the server returns the following information to the client:
•
•
•
•
After gaining authorization for the first time, you may configure these attributes.
NOTE:
RADIUS authentication/authorization is done for every login. There is no difference between first-time login and
subsequent logins.
Security
803
Summary of Contents for S4048T-ON
Page 1: ...Dell Configuration Guide for the S4048 ON System 9 11 2 1 ...
Page 148: ...Figure 10 BFD Three Way Handshake State Changes 148 Bidirectional Forwarding Detection BFD ...
Page 251: ...Dell Control Plane Policing CoPP 251 ...
Page 363: ... RPM Synchronization GARP VLAN Registration Protocol GVRP 363 ...
Page 511: ...Figure 64 Inspecting the LAG Configuration Link Aggregation Control Protocol LACP 511 ...
Page 558: ...Figure 84 Configuring Interfaces for MSDP 558 Multicast Source Discovery Protocol MSDP ...
Page 559: ...Figure 85 Configuring OSPF and BGP for MSDP Multicast Source Discovery Protocol MSDP 559 ...
Page 564: ...Figure 88 MSDP Default Peer Scenario 2 564 Multicast Source Discovery Protocol MSDP ...
Page 565: ...Figure 89 MSDP Default Peer Scenario 3 Multicast Source Discovery Protocol MSDP 565 ...
Page 841: ...Figure 115 Single and Double Tag TPID Match Service Provider Bridging 841 ...
Page 842: ...Figure 116 Single and Double Tag First byte TPID Match 842 Service Provider Bridging ...