Configuring Security and Authentication
Permit monitor only mode
•Enable: A user with “Monitor" permissions can only connect to the port in read only mode any time.
•Disable: A user with “Monitor" permissions can connect if a read/write user has a connection to the port. A read only session is automatically disconnected if the main user (read/write session) disconnects from the port.
Authentication
The Digi CM supports multiple methods of user authentication. The following methods are supported: Local, TACACS+, RADIUS, LDAP, and Kerberos. The type of authentication protocol you use is dependent on your environment.
4. Access granted
Server
1.Connection request
2. Query
User ID
PC | 3. Accept |
| User ID |
| Authentication |
| server |
Configuring Authentication Methods for Port Access
You can choose between having a single authentication method, such as RADIUS, or an authentication method where a Local authentication service is used in addition to the RADIUS, LDAP, TACACS+ server, or Kerberos. These options are listed when you configure the Digi CM for authentication. To configure a Digi CM for authentication, do the following:
1.Access the web interface.
2.Under the Serial port heading, choose Configuration.
3.Choose All or an Individual port > Authentication.
4.From the drop down menu, choose an authentication method. A configuration screen for that particular authentication method is displayed. The following figure displays the parameters for setting up a RADIUS
Chapter 7 | 67 |
