Configuring Device Security
Configuring Management Security
–Local — Authenticates the user at the device level. The device checks the user name and password for authentication.
–RADIUS — Authenticates the user at the RADIUS server. For more information, see Defining RADIUS Server Settings.
–TACACS+ — Authenticates the user at the TACACS+ server. For more information, see Defining TACACS+ Host Settings.
–Local, RADIUS — Indicates that authentication first occurs locally. If authentication cannot be verified locally, the RADIUS server authenticates the management method. If the RADIUS server cannot authenticate the management method, the session is blocked.
–RADIUS, Local — Indicates that authentication first occurs at the RADIUS server. If authentication cannot be verified at the RADIUS server, the session is authenticated locally. If the session cannot be authenticated locally, the session is blocked.
–Local, RADIUS, None — Indicates that authentication first occurs locally. If authentication cannot be verified locally, the RADIUS server authenticates the management method. If the RADIUS server cannot authenticate the management method, the session is permitted.
–RADIUS, Local, None — Indicates that Authentication first occurs at the RADIUS server. If authentication cannot be verified at the RADIUS server, the session is authenticated locally. If the session cannot be authenticated locally, the session is permitted.
–Local, TACACS+ — Indicates that Authentication first occurs locally. If authentication cannot be verified locally, the TACACS+ server authenticates the management method. If the TACACS+ server cannot authenticate the management method, the session is blocked.
–TACACS+, Local — Indicates that authentication first occurs at the TACACS+ server. If authentication cannot be verified at the TACACS+ server, the session is authenticated locally. If the session cannot be authenticated locally, the session is blocked.
–Local, TACACS+, None — Indicates that authentication first occurs locally. If authentication cannot be verified locally, the TACACS+ server authenticates the management method. If the TACACS+ server cannot authenticate the management method, the session is permitted.
–TACACS+, Local, None — Indicates that authentication first occurs at the TACACS+ server. If authentication cannot be verified at the TACACS+ server, the session is authenticated locally. If the session cannot be authenticated locally, the session is permitted.
2.Click Add. The Add Authentication Profile Page opens:
Page 35