Chapter 9 Configuring Authentication

Creating Authentication Lists

Enable authentication

Use the commands in the following procedure to build a default list of authentication services to be used for Enable authentication. Building the default list completes the configuration of Enable authentication and makes it immediately effective.

 

Command

Description

Step 1

 

 

enable

Enter Administrator mode.

Step 2

 

 

aaa authentication enable

Create a default list of authentication services for Enable

 

default group sysadmin enable

authentication.

 

 

For example, create a list so that AAA first tries to perform

 

 

authentication using the TACACS+ servers in the group named

 

 

sysadmin. If no TACACS+ server is found, TACACS+ returns an

 

 

error and AAA attempts authentication using the configured

 

 

Administrator mode password. If the password you entered does

 

 

not match the configured Administrator mode password,

 

 

authentication fails and no other methods are attempted.

 

 

 

RADIUS servers are passed the default user name, $enab15$, along with the entered password for authentication purposes.

TACACS+ servers are passed the user name used at login, along with the entered password, for authentication purposes. If a user name was not needed for login, the storage router prompts the user to enter a user name, along with the enable password, when the enable command is issued.

Tip You must configure the databases used by the RADIUS or TACACS+ servers with the appropriate user name and password information.

Note Local and local-case services cannot be used for Enable authentication.

Login authentication

Use the commands in the following procedure to build a default list of authentication services to be used for Login authentication. Building the default list completes the configuration of Login authentication and makes it immediately effective.

 

Command

Description

Step 1

 

 

enable

Enter Administrator mode.

Step 2

 

 

aaa authentication login default

Create a default list of authentication services for Login

 

group sysadmin monitor

authentication.

 

 

For example, create a list so that AAA first tries to perform

 

 

authentication using the TACACS+ servers in the group named

 

 

sysadmin. If no TACACS+ server is found, TACACS+ returns an

 

 

error and AAA attempts authentication using the configured

 

 

Monitor mode password (eliminating authentication of the user

 

 

name). If the password you entered does not match the configured

 

 

Monitor mode password, authentication fails and no other methods

 

 

are attempted.

 

 

 

Cisco SN 5428-2 Storage Router Software Configuration Guide

 

OL-5239-01

9-17

 

 

 

Page 17
Image 17
Cisco Systems SN 5428-2 manual Enable authentication, Login authentication

SN 5428-2 specifications

Cisco Systems SN 5428-2 is a highly versatile and advanced network storage solution designed to meet the demands of data center environments. This robust storage appliance integrates cutting-edge technologies to provide high performance, reliability, and scalability, making it an ideal choice for organizations looking to enhance their data management capabilities.

One of the main features of the SN 5428-2 is its high-density architecture, which allows for efficient utilization of space while providing ample storage capacity. The system supports multiple drive configurations, including HDDs and SSDs, enabling users to tailor their storage solutions based on performance needs and budget constraints. With a significant amount of raw capacity available, organizations can effortlessly handle large volumes of data and support intensive workloads.

The SN 5428-2 boasts advanced data protection technologies, ensuring that critical information is safeguarded against loss or corruption. Features like RAID support provide redundancy and fault tolerance, while snapshot and cloning capabilities offer quick recovery options in case of data breaches or system failures. Additionally, built-in encryption features help protect sensitive data both at rest and in transit.

The appliance incorporates state-of-the-art networking capabilities as well. With support for various network protocols, including iSCSI and Fibre Channel, the SN 5428-2 can seamlessly integrate into existing infrastructures. This adaptability allows for easy connection with different servers and storage systems, facilitating a more cohesive and efficient operational environment.

Furthermore, the SN 5428-2 is designed with scalability in mind. Organizations can start with a basic configuration and expand as their storage needs grow by adding additional drives or connecting more appliances. This flexibility ensures that businesses can continue to meet their evolving data demands without the need for complete system overhauls.

Management and monitoring of the SN 5428-2 are simplified through a user-friendly interface that provides real-time insights into system performance, capacity utilization, and health status. Administrators can easily configure and manage storage resources, making operational tasks more efficient.

In summary, Cisco Systems SN 5428-2 stands out in the realm of storage solutions by combining high density, robust data protection, advanced networking capabilities, and remarkable scalability. Its thoughtful design and features make it an essential tool for organizations looking to enhance their data storage infrastructure and improve overall performance. With its reliable and efficient performance, the SN 5428-2 is well-suited for a wide array of data center applications.