168 Configuring System Information
The following example shows an entry in the FreeRADIUS /etc/raddb/users file that allows a
user (name:
admin) to log onto the switch with read/write privileges, which is equivalent to privilege level
15.
The values for the Service-Type attribute are as follows:
•
NAS-Prompt-User
indicates the user should be provided a command prompt on the NAS, from
which nonprivileged commands can be executed.
•
Administrative-User
indicates the user should be granted access to the administrative
interface to the NAS, from which privileged commands can be executed.
Applying an Authentication Method List to Console Sessions
1.
Open the
Select Authentication
page.
2.
Select an authentication profile in the
Console
field.
3.
Click
Apply Changes
.
Console sessions are assigned an authentication method List.
Applying an Authentication Profile to Telnet Sessions
1.
Open the
Select Authentication
page.
2.
Select an authentication profile in the
Teln et
field.
3.
Click
Apply Changes
.
Console sessions are assigned authentication profiles.
Applying an Authentication Profile to Secure Telnet (SSH) Sessions
1.
Open the
Select Authentication
page.
2.
Select an authentication profile in the
Secure Telnet (SSH)
field.
3.
Click
Apply Changes
.
Secure Telnet (SSH) sessions are assigned authentication profiles.
Assigning HTTP Sessions an Authentication Sequence
1.
Open the
Select Authentication
page.
admin Auth-Type := Local,
User-Password == "pass1234"
Service-Type = NAS-Prompt-User
enable Auth-Type := Local,
User-Password == "pass5678"
Service-Type = Administrative-User