U
SER
A
UTHENTICATION
6-4
Command Usage
• By default, management access is always checked against the
authentication database stored on the local switch. If a remote
authentication server is used, you must specify the authentication
sequence and the corresponding parameters for the remote
authentication protocol. Local and remote logon authentication control
management access via the console port, web browser, or Telnet.
• RADIUS and logon authentication assign a specific privilege
level for each user name/password pair. The user name, password, and
privilege level must be configured on the authentication server. The
encryption methods used for the authentication process must also be
configured or negotiated between the authentication server and logon
client. This switch can pass authentication messages between the server
and client that have been encrypted using MD5 (Message-Digest 5), TLS
(Transport Layer Security), or TTLS (Tunneled Transport Layer
Security).
• You can specify up to three authentication methods for any user to
indicate the authentication sequence. For example, if you select (1)
RADIUS, (2) TACACS and (3) Local, the user name and password on
the RADIUS server is verified first. If the RADIUS server is not
available, then authentication is attempted using the server,
and finally the local user name and password is checked.
Command Attributes
•
Authentication
– Select the authentication, or authentication sequence
required:
-
Local
– User authentication is performed only locally by the switch.
-
Radius
– User authentication is performed using a RADIUS server
only.
-
TACACS
– User authentication is performed using a
server only.
- [authentication sequence] – User authentication is performed by up to
three authentication methods in the indicated sequence.
Содержание 7824M/FSW - annexe 1
Страница 2: ......
Страница 24: ...TABLE OF CONTENTS xxiv ...
Страница 28: ...TABLES xxviii ...
Страница 32: ...FIGURES xxxii Figure 16 3 DNS Cache 16 7 ...
Страница 34: ...GETTING STARTED ...
Страница 46: ...SYSTEM DEFAULTS 1 12 ...
Страница 62: ...SWITCH MANAGEMENT ...
Страница 74: ...CONFIGURING THE SWITCH 3 12 ...
Страница 112: ...BASIC MANAGEMENT TASKS 4 38 ...
Страница 168: ...USER AUTHENTICATION 6 30 ...
Страница 223: ...SHOWING PORT STATISTICS 9 33 Figure 9 12 Port Statistics ...
Страница 230: ...ADDRESS TABLE SETTINGS 10 6 ...
Страница 304: ...CLASS OF SERVICE 13 16 ...
Страница 316: ...QUALITY OF SERVICE 14 12 ...
Страница 338: ...MULTICAST FILTERING 15 22 ...
Страница 346: ...DOMAIN NAME SERVICE 16 8 ...
Страница 348: ...COMMAND LINE INTERFACE IP Interface Commands 35 1 ...
Страница 362: ...OVERVIEW OF COMMAND LINE INTERFACE 17 14 ...
Страница 426: ...SYSTEM MANAGEMENT COMMANDS 19 56 Example Console show calendar 15 12 34 February 1 2002 Console ...
Страница 494: ...USER AUTHENTICATION COMMANDS 21 48 ...
Страница 514: ...CLIENT SECURITY COMMANDS 22 20 ...
Страница 540: ...ACCESS CONTROL LIST COMMANDS 23 26 ...
Страница 558: ...INTERFACE COMMANDS 24 18 ...
Страница 576: ...MIRROR PORT COMMANDS 26 4 ...
Страница 582: ...RATE LIMIT COMMANDS 27 6 ...
Страница 616: ...SPANNING TREE COMMANDS 29 28 ...
Страница 644: ...VLAN COMMANDS 30 28 ...
Страница 664: ...CLASS OF SERVICE COMMANDS 31 20 ...
Страница 678: ...QUALITY OF SERVICE COMMANDS 32 14 ...
Страница 720: ...APPENDICES ...
Страница 726: ...SOFTWARE SPECIFICATIONS A 6 ...
Страница 730: ...TROUBLESHOOTING B 4 ...
Страница 746: ...INDEX Index 6 ...
Страница 747: ......