14: User Authentication
EMG™ Edge Management Gateway User Guide
308
5. Click the
Apply
button.
RADIUS Commands
Go to
to view CLI commands which correspond to the web page entries
described above.
User Attributes & Permissions from LDAP Schema or RADIUS VSA
Remote user attributes (group/permissions and port access) can be obtained from an Active
Directory server's schema via the user attribute 'secureLinxSLCPerms', or from a RADIUS server's
Vendor-Specific Attribute (see below). This attribute is a set of parameter-value pairs. Each
parameter and value is separated by a space, and a space separates each parameter-value pair.
Whitespace is not supported in the value strings. The parameters that are supported are:
rights
- User rights. The value string is a comma-separated list of two letter user permissions.
Example: "nt,wb,ra".
data
- Data port access. The value string specifies the list of ports the user has 'direct' access
to. Example: "2,4-18,U1".
listen
- Listen port access. The value string specifies the list of ports the user has 'listen'
access to.
clear
- Clear port access. The value string specifies the list of port buffers the user has the
right to clear.
group
- User group. Valid values for the value string are "default", "power", and "admin", and
any EMG custom group name. If a custom group name is specified and it matches a current
EMG custom group name, any rights attribute will be ignored, and the custom group's rights
(permissions) will be used instead. A group name with spaces cannot be specified.
escseq
- Escape sequence. The value string specifies the user's escape sequence. Use "\x"
to specify non-printable characters. For example, "\x1bA" specifies the sequence "ESC-A".
brkseq
- Break sequence. The value string specifies the user's break sequence.
menu
- Custom user menu. The value string specifies the user's custom user menu.
display
- Display custom user menu when a user logs into the CLI. Valid values for the value
string are "yes" and "no".
dbnumber
- Dial-back number. The value string specifies the user's dial-back number for
modem dial-back connections.
allowdb
- Allow a user to have dial-back access. Valid values for the value string are "yes"
and "no".
RADIUS servers will need to be configured to support the Lantronix Vendor-Specific Attribute. For
example, on a FreeRADIUS server, the dictionary will need be updated with the Lantronix
definition by including the contents below in a file named
dictionary.lantronix
, and including it in the
RADIUS server dictionary definitions by adding the appropriate
$INCLUDE
directive to the main
dictionary file.
Device Port
Configuration
Right to enter device port settings.
USB
Right to enter modem settings for USB devices and control USB storage devices.
SD Card
Right to enter settings for SD card.
RPM
Right to manage and control remote power managers.
Summary of Contents for EMG 7500
Page 100: ...7 Networking EMG Edge Management Gateway User Guide 100 Figure 7 5 Network Wireless Settings ...
Page 353: ...15 Maintenance EMG Edge Management Gateway User Guide 353 Figure 15 12 About EMG ...
Page 474: ...EMG Edge Management Gateway User Guide 474 Figure E 3 EU Declaration of Conformity ...
Page 475: ...EMG Edge Management Gateway User Guide 475 Figure E 4 EU Declaration of Conformity continued ...