9-10
Cisco SN5428-2 Storage Router Software Configuration Guide
OL-5239-01
Chapter9 Configuring Authentication
Configuration Tasks
Figure 9-6 illustrates AAA configuration elements used for Login authentication and Figure9-7 illustrates the example configuration of Login authentication and the authentication services used in this chapter.Figure9-6 Login Authentication Configuration Elements
SN 5428-2 Storage Router
AAA authentication services
Authentication services list
RADIUS TACACS+ Enable
CLI command session processor
Remote RADIUS servers Remote TACACS+ servers
Monitor
Telnet, SSH or console management session
. . .
Username database
85753
When Login authentication is
enabled, authentication is
required when the user
attempts Monitor mode access
to the SN 5428-2 by attempting
to establish a CLI command
session.
The login process prompts the
user for a user name andpass
word, which are passed to
AAA for authentication.
AAA uses the default
authentication list to determine
which services to use for the
authentication attempt.
If authentication fails, the login
request is refused and the user
cannot obtain Monitor mode
access to the SN 5428-2.
Administrator
password
Monitor
password
local or
local-case
user password
user password
user password
Login requires user name
and password