Contents
x
Catalyst 2960 and 2960-S Switch Software Configuration Guide
OL-8603-09
Configuring the Switch to Use Vendor-Specific RADIUS Attributes 9-36
Configuring the Switch for Vendor-Proprietary RADIUS Server Communication 9-38
Configuring CoA on the Switch 9-39
Monitoring and Troubleshooting CoA Functionality 9-40
Configuring RADIUS Server Load Balancing 9-40
Displaying the RADIUS Configuration 9-40
Configuring the Switch for Local Authentication and Authorization 9-40
Configuring the Switch for Secure Shell 9-41
Understanding SSH 9-42
SSH Servers, Integrated Clients, and Su pported Versions 9-42
Limitations 9-43
Configuring SSH 9-43
Configuration Guidelines 9-43
Setting Up the Switch to Run SSH 9-43
Configuring the SSH Server 9-44
Displaying the SSH Configuration and Status 9-45
Configuring the Switch for Secure Socket Layer HTTP 9-46
Understanding Secure HTTP Servers and Clients 9-46
Certificate Authority Trustpoints 9-46
CipherSuites 9-48
Configuring Secure HTTP Servers and Clients 9-48
Default SSL Configuration 9-48
SSL Configuration Guidelines 9-49
Configuring a CA Trustpoint 9-49
Configuring the Secure HTTP Server 9-50
Configuring the Secure HTTP Client 9-51
Displaying Secure HTTP Server and Client Status 9-52
Configuring the Switch for Secure Copy Protocol 9-52
Information About Secure Copy 9-53
CHAPTER
10 Configuring IEEE 802.1x Port-Based Authentication 10-1
Understanding IEEE 802.1x Port-Based Authentication 10-1
Device Roles 10-3
Authentication Process 10-4
Authentication Initiation and Message Exchange 10-6
Authentication Manager 10-8
Port-Based Authentication Methods 10-8
Per-User ACLs and Filter-Ids 10-9
Authentication Manager CLI Commands 10-10