Allied Telesis at-8700xl series switch manual Login

Page 46

46

AT-8700XL Series Switch User Guide

In normal mode, a user with manager privilege can create and delete accounts for users with any of these privilege levels. Users and passwords are managed by the User Authentication Facility. Users and passwords are authenticated using an internal database called the User Authentication Database, or by interrogation of external RADIUS (Remote Authentication Dial In User Service) or TACACS (Terminal Access Controller Access System) servers.

On the CLI, to use an account with manager privilege, log in to the account by entering the command:

LOGIN

The switch prompts you to enter a user name and password. To return to USER mode, enter the command:

LOGOFF

Make sure that you do not leave a manager session unattended. Unauthorised use of a manager session gives access to the User Authentication Database. To reduce the risk of unauthorised activity, a subset of manager commands have a security timer. These commands are shown in Table 4 on page 46. When you enter one of these commands from a manager session, the security timer is started and is then restarted each time you enter another of these commands. If you enter one of these commands after the timer has expired, you are prompted to re-enter the password. The secure delay timer is by default 60 seconds. If the password is not entered correctly the password prompt is repeated a set number of times. If the correct password is still not entered a log message is generated and the session is logged off.

The security timer enables a manager to make successive additions and modifications to the database at one time without having to re-enter the password for every command.

The security timer does not provide a foolproof security mechanism. Managers should always attempt to log out of a manager session before leaving a terminal unattended.

Table 4: Secure commands controlled by the security timer.

Command

Description

 

 

ADD TACACS SERVER

Adds a TACACS server to the list of TACACS servers used

 

for user authentication.

 

 

ADD USER

Adds a user to the User Authentication Database.

 

 

DELETE TACACS SERVER

Deletes a TACACS server from the list of TACACS servers

 

used for user authentication.

 

 

DELETE USER

Deletes a user from the User Authentication Database.

 

 

PURGE USER

Deletes all users except MANAGER from the User

 

Authentication Database.

 

 

SET MANAGER PORT

Assigns a port semipermanent MANAGER privilege.

 

 

SET USER

Modifies a user record in the User Authentication Database.

 

 

If the switch is operating in security mode, the manager must also log in to a user account with SECURITY OFFICER privilege in order to execute any of the commands listed in Table 4 on page 46.

Software Release 2.6.1 C613-02030-00 REV B

Image 46
Contents AT-8700XL Series Switch Page Contents Switching Why Read this User Guide? ChapterWhere To Find More Information AT-8700XL Series Switch Documentation SetSwitching Features Features of the AT-8700XL Series SwitchTechnical support Management Features Layer 3 and Other FeaturesIntroduction Page Getting Started with the Command Line Interface CLI This ChapterConnecting a Terminal or PC Terminal Communication ParametersLogging Assigning an IP AddressTo change the IP address for an interface, enter the command Setting Routes Changing a Password Choosing a PasswordUsing the Commands AliasesGetting Command Line Help Setting System ParametersLocation of the switch, for example Page Getting Started with the Graphical User Interface GUI Accessing the Switch via the GUI What is the GUI?Browser and PC Setup Http Proxy Servers Establishing a Connection to the Switch Start hereOption 1 Configuring the Switch before Installation Use this procedure ifOption 2 Installing the Switch into the LAN To install the switch into the same subnet as the PCEnable IP Remoteassign Option 3 Connecting to an Installed Switch Secure Access To create an RSA key pair, use the commandSet the UTC offset System Status System StatusConfiguration Menu Using the GUI Navigation and FeaturesUsing Configuration Pages An example of a configuration page with a selection table Editable Fields Management Menu Ports GraphicChanging the Password Diagnostics MenuMonitoring Menu Configuring Multiple Devices Saving Configuration Entered with the GUICombining GUI and CLI Configuration Context Sensitive GUI HelpTo upgrade the GUI Upgrading the GUITroubleshooting Accessing the Switch via the GUI Deleting Temporary FilesTraffic Flow IP Addresses and Dhcp SolutionSolutions Time and NTPLoading Software Page Operating the switch User Accounts and PrivilegesLogin Normal Mode and Security Mode Specific Parameters Remote Management Storing Files in Flash MemoryUsing Scripts Example output from the Show File commandSaving the Switch’s Configuration Storing Multiple ScriptsLoading and Uploading Files File Naming ConventionsLoading Files SPASetting Loader Defaults Example Load a Patch File Using HttpMore information Uploading Files From the SwitchExample Upload a Configuration File Using Tftp To upload a log fileUpgrading Switch Software Example Upgrade to a New Software Release Using To upgrade to a new software releaseFlash Example Upgrade to a new patch file To upgrade to a new patch fileUsing the Built-in Editor Editor screen layoutSnmp and MIBs Snmp MIBs in the AT-8700XL Series Software ReferenceFor More About Operations and Facilities Switch Ports Enabling and Disabling Switch PortsPacket Storm Protection Autonegotiation of Port Speed and Duplex ModePort Trunking Port MirroringVirtual Local Area Networks VLANs Creating VLANs Protected VLANs Summary of Vlan tagging rulesVlan Interaction with STPs and Trunk Groups Generic Vlan Registration Protocol Gvrp Quality of ServiceSpanning Tree Protocol STP IP Switching Spanning Tree and Rapid Spanning Tree Port StatesRouting Information Protocol RIP Igmp SnoopingDescription TriggersEvent ParametersPage Maintenance and Troubleshooting How the Switch Starts Up Switch startup messagesHow to Avoid Problems Backup software files Backup configuration scriptWatch for software updates What to Do if You Clear Flash Memory Completely If you accidentally do this, you will need toWhat to Do if Passwords are Lost Getting the Most Out of Technical SupportResetting Switch Defaults Checking Connections Using PingTroubleshooting IP Configurations Telnet FailsYour switch is acting as a Dhcp client Troubleshooting Dhcp IP AddressesUsing Trace Route for IP Traffic Your switch is acting as a Dhcp server

at-8700xl series switch specifications

Allied Telesis AT-8700XL Series Switches are sophisticated networking devices designed to meet the demanding requirements of modern enterprise environments. These managed Ethernet switches are optimized for reliability, performance, and scalability, making them ideal for various applications, from small businesses to large-scale networks.

One of the standout features of the AT-8700XL series is its robust Layer 2 and Layer 3 capabilities. This versatility allows the switches to perform both basic switching and advanced routing functions, facilitating efficient data traffic management. The series supports a wide range of standard protocols, including VLANs, STP, and RSTP, ensuring smooth and flexible network segmentation.

Another critical characteristic is the series' high-speed connectivity options. With multiple Gigabit Ethernet ports, the AT-8700XL series can handle significant data loads, ensuring seamless communication between connected devices. Furthermore, some models within the series offer 10 Gigabit uplink ports, providing the necessary bandwidth to connect to core networks or high-speed servers.

The AT-8700XL series incorporates advanced Quality of Service (QoS) features that enable network administrators to prioritize traffic effectively. This is particularly crucial for applications sensitive to latency, such as VoIP and video conferencing. By ensuring that time-sensitive data packets are transmitted promptly, the switches help maintain optimal performance across the entire network.

Power over Ethernet (PoE) support is yet another advantage of the AT-8700XL series. This feature allows the switches to deliver power to connected devices, such as IP cameras and wireless access points, via the Ethernet cable. This capability simplifies installations by reducing the need for additional power sources, ultimately saving on costs and improving efficiency.

Security is paramount in any network, and the AT-8700XL series does not disappoint. The switches employ robust security protocols, including Access Control Lists (ACLs), MAC address filtering, and DHCP snooping, to protect against unauthorized access and ensure network integrity.

In summary, Allied Telesis AT-8700XL Series Switches offer a comprehensive solution for various networking needs. With their Layer 2 and Layer 3 capabilities, high-speed connectivity, QoS features, PoE support, and security measures, these switches are well-equipped to enhance network efficiency and reliability, making them an excellent choice for organizations looking to future-proof their infrastructure. The AT-8700XL series exemplifies Allied Telesis's commitment to delivering high-quality networking solutions that cater to the evolving demands of businesses today.