Manuals / Black Box / Computer Equipment / Network Hardware

Black Box LGB1126A, LGB1148A, Managed Gigabit Switch, LGB1108A manual Security, Page

Models: LGB1108A Managed Gigabit Switch LGB1126A LGB1148A

1 220
Download 220 pages 9.43 Kb
Page 188
Image 188

Chapter 4: Security

Parameter Description

Timeout: The Timeout, which can be set to a number between 3 and 3600 seconds, is the maximum time to wait for a reply from a server. If the server does not reply within this timeframe, we will consider it to be dead and continue with the next enabled server (if any).

RADIUS servers are using the UDP protocol, which is unreliable by design. In order to cope with lost frames, the timeout interval is divided into 3 subintervals of equal length. If a reply is not received within the subinterval, the request is transmitted again. This algorithm causes the RADIUS server to be queried up to 3 times before it is considered to be dead.

Dead Time: The Dead Time, which can be set to a number between 0 and 3600 seconds, is the period during which the switch will not send new requests to a server that has failed to respond to a previous request. This will stop the switch from continually trying to contact a server that it has already determined as dead.

Setting the Dead Time to a value greater than 0 (zero) will enable this feature, but only if more than one server has been configured.

RADIUS Authentication Server Configuration

The table has one row for each RADIUS Authentication Server and a number of columns, which are:

#: The RADIUS Authentication Server number for which the configuration below applies.

Enabled: Enable the RADIUS Authentication Server by checking this box.

IP Address/Hostname: The IP address or hostname of the RADIUS Authentication Server. IP address is expressed in dotted decimal notation.

Port: The UDP port to use on the RADIUS Authentication Server. If the port is set to 0 (zero), the default port (1812) is used on the RADIUS Authentication Server.

Secret: The secret—up to 29 characters long—shared between the RADIUS Authentication Server and the switch.

RADIUS Accounting Server Configuration

The table has one row for each RADIUS Accounting Server and a number of columns, which are:

#: The RADIUS Accounting Server number for which the configuration below applies.

Enabled: Enable the RADIUS Accounting Server by checking this box.

IP Address/Hostname: The IP address or hostname of the RADIUS Accounting Server. IP address is expressed in dotted deci- mal notation.

Port: The UDP port to use on the RADIUS Accounting Server. If the port is set to 0 (zero), the default port (1813) is used on the RADIUS Accounting Server.

Secret: The secret—up to 29 characters long—shared between the RADIUS Accounting Server and the switch.

TACACS+ Authentication Server Configuration

The table has one row for each TACACS+ Authentication Server and a number of columns, which are:

#: The TACACS+ Authentication Server number for which the configuration below applies.

Enabled: Enable the TACACS+ Authentication Server by checking this box.

IP Address/Hostname: The IP address or hostname of the TACACS+ Authentication Server. IP address is expressed in dotted decimal notation.

Page 188

724-746-5500 blackbox.com

LGB1108A

 

 

Page 187 Page 189
Page 188
Image 188
Black Box LGB1126A, LGB1148A, Managed Gigabit Switch, LGB1108A manual Security, Page
Page 187 Page 189