Illustrates the Radius authentication procedure | Avaya P334T-ML

Chapter 8 User Authentication

to the switch's embedded management.

The Remote Authentication Dial-In User Service (RADIUS) is an IETF standard (RFC 2138) client/server security protocol. Security and login information is stored in a central location known as the RADIUS server. RADIUS clients, such as the P330, communicate with the RADIUS server to authenticate users.

All transactions between the RADIUS client and server are authenticated through the use of a “shared secret” which is not sent over the network. The shared secret is an authentication password configured on both the RADIUS client and its RADIUS servers. The shared secret is stored as clear text in the client’s file on the RADIUS server, and in the non-volatile memory of the P330. In addition, user passwords are sent between the client and server are encrypted for increased security.

Figure 8.2 illustrates the RADIUS authentication procedure:

Figure 8.2 RADIUS Authentication Procedure

User attempts login

Local User

account

authenticated in

switch?

No

Authentication request sent to RADIUS Server

User name and

password

authenticated?

No

Authentication Reject

sent to switch

User cannot access switch embedded managegment

Yes

Yes

Perform log-in according to user's priviliege level to switch

Radius Commands

Avaya P334T-ML User’s Guide

49

Image 65

Avaya P334T-ML manual Illustrates the Radius authentication procedure, Radius Commands

Contents

Avaya P334T-ML Avaya.com Contents Table of Contents Radius Table of Contents Rmon LAG Dhcp BootpRIP2 Avaya P334T-ML User’s Guide Vii Table of Contents Viii Avaya P334T-ML User’s Guide Safety Information FCC Notice Before you Install the P330-MLConventions Used in the Documentation CLI Conventions Warranty Avaya Support Avaya P334T-ML User’s Guide Overview Page Avaya P334T-ML Overview Avaya P334T-ML FeaturesIntroduction About the P334T-ML Command Line Interface CLI Layer 3 Features P330-MLNetwork Management and Monitoring Device Manager Embedded Web Port Mirroring Avaya Integrated Manager Fans, Power Supply, and BUPS-ML Monitoring Ietf Layer Standards and CompatibilityAvaya P330 Standards Supported Ietf Network Monitoring P334T-ML Switch SpecificationsPower Requirements Physical Safety AC Version SafetySafety DC Version EMC Emissions Interfaces Stacking Sub-moduleBasic Mtbf X330STK-ML Approved SFF/SFP Gbic Transceivers Safety InformationLaser Classification Class Luokan Klass Laser Product Laserlaite Laser Apparat Installing and Removing a SFF/SFP Gbic Transceiver InstallationSpecifications LX Transceiver ELX Gigabit Fiber Optic CablingAgency Approval TXD Console Pin AssignmentsRXD GND DTR RTS CTS Chapter Avaya P334T-ML User’s Guide Installation Page Site Preparation InstallationRequired Tools Power Requirements AC P334T-ML Rack Mounting Rack Mounting Optional To connect stacked switches Installing the X330STK-ML Stacking Sub-Module OptionalConnecting Stacked Switches Incorrect Stack Connection P330 Stack Connections Prerequisites Connecting Cables to Network EquipmentMaking Connections to Network Equipment 1000BASE-ELX Powering On Avaya P330 Switch DC Powering Up the Avaya P330Powering On Avaya P330 Module AC Post-Installation Avaya P334T-ML Front Panel Avaya P334T-ML Front and Rear Panels OPR PWR SYS LAG Avaya P334T-ML- Select buttons Avaya P334T-ML Back Panel BUPS-ML Input Connector Sticker BUPS-ML Input Connector Establishing a Serial Connection Configuring the Terminal Serial Port ParametersConnecting a Terminal to the Avaya P330 Serial port Assigning P330’s IP Stack Address P330 Sessions Establishing an SSH Connection Establishing a Telnet Connection Overview Connecting a Modem to the Console PortEstablishing a Modem PPP Connection with the P330 Entering the Supervisor Level Security Levels Entering the CLI Defining new local usersExiting the Supervisor Level Introduction to Snmp Snmp SupportSnmp Versions Managers and Agents SNMPv1 Manager/Agent Communication SNMPv3 SNMPv2c Groups Views Snmp Commands User Authentication Introduction to SSH SSH Protocol Support User Authentication SCP Protocol Support SSH Commands Introduction to Radius Radius Radius Commands Illustrates the Radius authentication procedure Introduction to Telnet Telnet Client Support Telnet Commands Recovery PasswordRecovery Password Commands Introduction Allowed Managers Introduction Allowed Managers CLI CommandsAllowed Managers Allowed Protocols Introduction Allowed Protocols CLI CommandsAllowed Protocols User Authentication Configuration Page Avaya P330 Default Settings P330 Default SettingsConfiguring the Switch SSH SnmpHttp Ports Ports 51 P330 Default Settings Avaya P334T-ML User’s Guide Basic Switch Configuration Switch Configuration Operating parameters System Parameter ConfigurationIdentifying the system UTC Uploading and Downloading Device Configurations and ImagesNetwork Time Acquiring Protocols Parameter Configuration Layer 2 Configuration File Tftp Layer 3 Configuration File Switch Configuration System Logging Messages System LoggingSystem Logging Introduction Applications Sinks Syslog Servers Syslog Configuration CLI Commands Switch Configuration Monitoring CPU Utilization Switch Configuration Avaya P334T-ML User’s Guide Rmon Smon Avaya P330 Layer 2 FeaturesOverview Ethernet Configuring Ethernet ParametersFast Ethernet Gigabit Ethernet Priority SpeedFlow Control CAM Table MAC AddressMmmmmmssssss MM-MM-MM-SS-SS-SS Ethernet Configuration CLI Commands Ethernet Implementation in the Avaya P334T-ML Vlan Overview Vlan Configuration Sales Engineering Mktg SalesVlan Tagging Multi Vlan Binding Entries and all the ports’ IDs PVIDs present in the switch Ingress Vlan Security Vlan CLI CommandsAutomatic Vlan Learning Vlan Implementation in the Avaya P334T-ML Pbnac Implementation in the P330 Family Port Based Network Access Control PbnacHow Port Based Authentication Works Configuring the P330 for Pbnac Pbnac CLI Commands Avaya P330 Layer 2 Features Spanning Tree per Port Spanning Tree ProtocolSpanning Tree Protocol Port Roles Rapid Spanning Tree Protocol RstpAbout the 802.1w Standard Spanning Tree Implementation in the P330 Family Spanning Tree Protocol CLI Commands Avaya P330 Layer 2 Features MAC Security Implementation in P330 MAC Security MAC Security CLI Commands MAC Aging Configuring the P330 for MAC AgingMAC Aging CLI Commands LAG Overview LAG CLI Commands LAG Implementation in the Avaya P330 Family of Products Port Redundancy Operation Port Redundancy Intermodule Port Redundancy Port Redundancy CLI Commands 102 Avaya P334T-ML User’s Guide IP Multicast Filtering IP Multicast Implementation in the Avaya P334T-ML IP Multicast CLI Commands Rmon Overview Rmon CLI Commands 106 Avaya P334T-ML User’s Guide Smon Overview Smon Port Mirroring CLI commands Port Mirroring ConfigurationPort Mirroring Overview Port Mirroring Constraints About Multilayer Policy Access ListsMultilayer Policy Multilayer Policy Implementation in the P334T-ML DSCP-to-COS MapsTrust Modes Configuration File Management Configuring the P334T-ML for Multilayer PolicyConfiguration Requirements Multilayer Policy CLI Commands Avaya P334T-ML User’s Guide 113 Weighted Queuing CLI Commands Weighted QueuingImplementation of Weighted Queuing in the P330-ML Port Classification Port Classification CLI Commands Implementation of Stack Health in the P330 Family Stack RedundancyStack Health Stack Health CLI Commands Avaya P330 Layer 2 Features 118 Avaya P334T-ML User’s Guide What is Routing? Avaya P330 Layer 3 Features Routing Multinetting Multiple Subnets per Vlan Routing ConfigurationForwarding IP Configuration CLI Commands IP Configuration Assigning Initial Router Parameters Obtaining and Activating a License Key Routerconfigure-ifinterface-name# prompt appears Obtaining a Routing License Key 126 Avaya P334T-ML User’s Guide Activating a Routing License Key License Key CLI Commands Avaya P330 Layer 3 Features 128 Avaya P334T-ML User’s Guide RIP Overview RIP Routing Interchange Protocol Configuration RIP2 RIP CLI Commands Avaya P334T-ML User’s Guide 131 Ospf Overview Ospf Open Shortest Path First Configuration Ospf CLI Commands Static Routing Overview Static Routing ConfigurationStatic Routing Configuration CLI Commands RIP Route Preferences Route Redistribution Route Redistribution Commands ARP Overview ARP Address Resolution Protocol Table Configuration ARP Table ARP CLI Commands DHCP/BOOTP Relay BOOTP/DHCP Overview BOOTP/DHCP CLI Commands NetBIOS Re-broadcast Configuration CLI Commands NetBIOS Re-broadcast ConfigurationNetBIOS Overview Vrrp Overview Vrrp Virtual Router Redundancy Protocol Configuration Case#1 Vrrp Configuration Example Case #2 Vrrp CLI Commands Avaya P334T-ML User’s Guide 145 Srrp Overview Srrp ConfigurationSrrp Configuration Example Srrp CLI Commands Policy Configuration CLI Commands Policy ConfigurationPolicy Configuration Overview Avaya P334T-ML User’s Guide 149 Avaya P330 Policy Policy Configuration Example P330-1super#ip access-list 100 2 fwd3 tcp any host IP Fragmentation/Reassembly CLI Commands IP Fragmentation and ReassemblyIP Fragmentation and Reassembly Overview Troubleshooting and Maintenance Page Troubleshooting the Installation Troubleshooting the InstallationPage Replacing the Stacking Sub-module Maintenance Chapter Maintenance 158 Avaya P334T-ML User’s Guide Obtain Software Online Downloading Software Updating the SoftwareSoftware Download Example Download New Version without Overwriting Existing Version