Chapter 9 Configuring Authentication

Using Authentication

Enable Authentication

When configured, a user enters password information each time the CLI enable command is entered from the management console, or from a Telnet or SSH management session. If the storage router is configured to allow FTP access, Enable authentication also authenticates users attempting to login and establish an FTP session with the storage router.

Using RADIUS Security Servers

Because the enable command does not require you to enter a user name, RADIUS authentication services are passed the default user name, $enab15$, along with the entered password for authentication. If no authentication services are configured, the entered password is checked against the Administrator mode password configured for the storage router.

Using TACACS+ Security Servers

Because the enable command does not require you to enter a user name, TACACS+ authentication services are passed the user name used at login, along with the entered password, for authentication. If a user name was not needed for login, the storage router will prompt the user to enter a user name, along with the enable password, when the enable command is issued.

Login Authentication

When configured, you are prompted to enter a user name and password each time access to the storage router is attempted from the management console, or from a Telnet or SSH management session.

Authentication Services

Authentication is configured by defining the authentication services available to the storage router. iSCSI, Enable and Login authentication types use authentication services to administer security functions. If you are using remote security servers, AAA is the means through which you establish communications between the SN 5428-2 and the remote RADIUS or TACACS+ security server.

Table 9-1lists the authentication services and indicates which authentication types can be performed by each service.

Table 9-1 Authentication Services

 

 

Authentication

 

 

 

 

 

 

 

 

Service

Description

Authentication Types

 

 

 

 

 

 

 

 

RADIUS

A distributed client/server system that secures

All

 

 

 

networks against unauthorized access. The SN 5428-2

 

 

 

 

 

 

 

 

sends authentication requests to a central RADIUS

 

 

 

 

 

 

 

 

server that contains all user authentication and network

 

 

 

 

 

 

 

 

service access information.

 

 

 

 

 

 

 

 

 

 

 

 

 

TACACS+

A security application that provides centralized

All

 

 

 

validation of users. TACACS+ services are maintained

 

 

 

 

 

 

 

 

in a database on a TACACS+ daemon running,

 

 

 

 

 

 

 

 

typically, on a UNIX or Windows NT workstation.

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Cisco SN 5428-2 Storage Router Software Configuration Guide

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

OL-5239-01

 

 

 

9-3

 

 

 

 

 

 

 

Page 3
Image 3
Cisco Systems SN 5428-2 manual Enable Authentication, Authentication Service Description Authentication Types

SN 5428-2 specifications

Cisco Systems SN 5428-2 is a highly versatile and advanced network storage solution designed to meet the demands of data center environments. This robust storage appliance integrates cutting-edge technologies to provide high performance, reliability, and scalability, making it an ideal choice for organizations looking to enhance their data management capabilities.

One of the main features of the SN 5428-2 is its high-density architecture, which allows for efficient utilization of space while providing ample storage capacity. The system supports multiple drive configurations, including HDDs and SSDs, enabling users to tailor their storage solutions based on performance needs and budget constraints. With a significant amount of raw capacity available, organizations can effortlessly handle large volumes of data and support intensive workloads.

The SN 5428-2 boasts advanced data protection technologies, ensuring that critical information is safeguarded against loss or corruption. Features like RAID support provide redundancy and fault tolerance, while snapshot and cloning capabilities offer quick recovery options in case of data breaches or system failures. Additionally, built-in encryption features help protect sensitive data both at rest and in transit.

The appliance incorporates state-of-the-art networking capabilities as well. With support for various network protocols, including iSCSI and Fibre Channel, the SN 5428-2 can seamlessly integrate into existing infrastructures. This adaptability allows for easy connection with different servers and storage systems, facilitating a more cohesive and efficient operational environment.

Furthermore, the SN 5428-2 is designed with scalability in mind. Organizations can start with a basic configuration and expand as their storage needs grow by adding additional drives or connecting more appliances. This flexibility ensures that businesses can continue to meet their evolving data demands without the need for complete system overhauls.

Management and monitoring of the SN 5428-2 are simplified through a user-friendly interface that provides real-time insights into system performance, capacity utilization, and health status. Administrators can easily configure and manage storage resources, making operational tasks more efficient.

In summary, Cisco Systems SN 5428-2 stands out in the realm of storage solutions by combining high density, robust data protection, advanced networking capabilities, and remarkable scalability. Its thoughtful design and features make it an essential tool for organizations looking to enhance their data storage infrastructure and improve overall performance. With its reliable and efficient performance, the SN 5428-2 is well-suited for a wide array of data center applications.