Fujitsu BX600 SB9 manual Specify the user’s password and press Submit

Page 41

White Paper Issue: October 2006 Integration of BX600 SB9 Switches in Cisco Networks

Page 41 / 47

Specify the user’s password and press “Submit”

Step 2: Configure the SB9

!SB9 Configuration for RADIUS

!bind the authentication list to all users, which are

!not locally.

username defaultlogin RADIUS-LIST

!Enable RADIUS radius accounting mode

radius-server host auth 10.222.0.21

radius-server key auth 10.222.0.21 7 8C555426262626262626262626262626 radius-server primary 10.222.0.21

!Since all users which are authenticated by TACACS+ are read-only

!user, it’s important to set the enable password which is not seen in

!the configuration file

enable passwd

!

!Create a authentication list

!authenticatio will be done agains RADIUS, if the server

!does not respond, it will be done locally authentication login RADIUS-LIST radius reject

!bind the authentication list to all users, which are

!not locally.

username defaultlogin RADIUS-LIST

!Enable the authentication using server 10.222.0.21 radius-server host auth 10.222.0.21

!Set the share key for the authentication server radius-server key auth 10.222.0.21 0 fsc

!Define the server as primary

radius-server primary 10.222.0.21

Image 41
Contents Switch Management Contents Introduction Switch ConnectivityBasic Multicast Services Page Introduction Auto Negotiation Recommended SolutionConfiguration Port Aggregation Network problemsShut down the affected ports to avoid loops Set up the port-channelVerify the operation of the port-channels Bring up the affected portsVLANs and Trunks Vlan Trunk between SB9 and Cisco SwitchDefine the VLANs Configure the port-channelsConfigure Vlan trunk Gvrp Verify the Vlan trunkRunning ST P 802.1D with PVST+ on Vlan Trunks Spanning Tree ProtocolRunning PVST+ on Vlan Trunks while disabling STP at the SB9 SB9Rapid Spanning Tree Combining RAPID-PVST and 802.1wCombining RAPID-PVST and 802.1w after failure of Po1 Configuration with Vlan Trunks SB9 SwitchConfigure the switches Network loopsPage Page STP Verify the configurationPage Configuration without Vlan Trunks Configuration example Rstp without Vlan trunksPage Mode Type State Role Enabled Forwarding Designated Disabled Enabled Disabled PC Mbr Manual forwarding Interface BX600 port mapping Access Port and NIC ConfigurationConfigure the access ports of the switches Typical access port configurationConfigure the Broadcom NIC Page Configure the Intel Adapter Page Select Switch Fault Tolerance and press Next Press Finish Link State Configure a Link State GroupConfiguration Recommended solutionEnable multicast routing and Igmp at the layer 3 switch Enable Igmp snooping at all Layer 2 switchesVlan Page Configure the SB9 for unicast Sntp Configuration of syslog and SntpConfigure the SB9 for broadcast Sntp Configure the SB9 for logging and syslogTest the configuration Configure Snmp for SNMPv1 and SNMPv2c Configuration of SnmpConfigure SNMPv3 authentication SnmpConfiguration of SSH Remote Console AccessConfigure the SB9 Test the loginPrepare the ACS Configuration of RadiusIntegration into Radius and TACACS+ Page Specify the user’s password and press Submit Test the login Configuration of Tacacs Page Configure the SB9 Cisco Discovery Protocol Configuration of CDPCheck the configuration Further information in the Internet Configuration of Port MonitoringPort Monitoring