Syntax

Description

aaa

Allows authentication, authorization, and accounting (AAA) to be used for

 

authentication

enable

Allows the enable password method; the default method of HTTP server user

 

authentication

local

Allows the local user database on the Cisco router, route processor, or access

 

server to be used for authentication

tacacs

Allows the Terminal Area Security Access Control (TACACS) or Extended

 

TACACS (XTACACS) server to be used for authentication

To apply the authentication type, use the following command:

CAT5KRSM(config)# ip http authentication local

Note To disable the configured authentication type, use the no ip authentication command. To configure the username hsn with the password team, use the following command:

CAT5KRSM(config)# username hsn password team

You can provide an additional layer of protection when using Cisco’s IOS ClickStart software or the Cisco Web browser interface. To do so, change the default TCP access port 80 to port 50, or any port you plan to use. To set the TCP port to 50, use the following command:

CAT5KRSM(config)# ip http port 50

You can reset the HTTP TCP port to its default by using the following command:

CAT5KRSM(config)# no ip http 50

Enabling Port Security

To enable dynamic port security on a Set/Clear command−based switch for module 3 port 3, use the following command:

CAT5K>(enable) set port security 3/3 enable

Port 3/3 port security enabled with the learned mac address.

Trunking disabled for Port 3/3 due to Security Mode

To show a port configuration for port security, use the following show command:

CAT5K> (enable) show port 3/3

The output should look similar to this:

Port Name

Status

Vlan Level Duplex Speed Type

—————————————— ————————— ———— —————— —————— ————— ———————

3/3

connected 2

normal half

100 100BaseTX

Port Security

Secure−Src−Addr

Last−Src−Addr

Shutdown

Trap IfIndex

———— ————————

————————————————

——————————————— ————————

———— ——————

3/3 enabled

00−15−20−4c−78−a1

00−15−20−4c−78−a1

 

Port Broadcast−Limit Broadcast−Drop

—————————————————— ——————————————

3/3

 

0

 

Port Align−Err

FCS−Err

Xmit−Err

Rcv−Err

UnderSize

269

Page 285
Image 285
Cisco Systems RJ-45-to-AUX manual Enabling Port Security, Aaa, Enable, Local, Tacacs