Foundry NetIron M2404C and M2404F Metro Access Switches
Configuring Switch Authentication Features (Rev. 03)
Overview
© 2008 Foundry Networks, Inc.
Page 4 of 70
Overview
Configuring User Privilege Levels with CLI
The user access rights and the associated functions that a user can perform can be control through
the assignment of one of the sixteen user privilege level (ranging from Guest to Administrator).
The commands that can be executed depend on the user’s privilege levels. The user needs a
password to access every level and to receive appropriate permission.
SSH
Secure Shell (SSH) is a program for security getting access to a remote computer over a network. It
allows the user to execute commands in a remote machine and to move files from one machine to
another.
SSH is designed to replace the rlogin, Telnet and RSH protocols and provide strong authentication
secure encrypted communications over unsecured channels. SSH protects the network from outside
attacks such as DNS and IP spoofing and IP source routing.
RADIUS
Remote Authentication Dial In User Service (RADIUS) is an AAA (Authentication, Authorization
and Accounting) client/server protocol and software that secures networks against unauthorized
access. It is used to enable remote access server to communicate with a central server, to
authenticate dial-in users and authorize their access to the requested system or service. The
RADIUS Client communicates with the RADIUS Server using a defined
secret
authentication
sequence.
Terminal Access Controller Access Control System Plus () is a security application that
provides access control for routers, network access servers and other networked computing devices
via one or more centralized servers. provides separate authentication, authorization and
accounting services. It is used to communicate between the device and an authentication database.
As is based on TCP, implementations are typically resilient against packet loss.
and RADIUS Servers Comparison
The following table compares several features of RADIUS and :
Features
RADIUS server
server
UDP
(User Datagram
Protocol) /
TCP
(Transmission Control
Protocol)
UDP TCP