280CHAPTER 7: CONFIGURING AUTHENTICATION, AUTHORIZATION, AND ACCOUNTING PARAMETERS

Table 24 Authentication Attributes for Local Users (continued)

Attribute

Description

Valid Value(s)

vlan-name

Virtual LAN (VLAN)

Name of a VLAN that you want the

(network access

assignment.

user to use. The VLAN must be

 

configured on a WX switch within the

mode only)

On some RADIUS

Mobility Domain to which this WX

 

servers, you might

 

switch belongs.

 

need to use the

 

 

 

standard RADIUS

 

 

attribute

 

 

Tunnel-Pvt-Group-ID,

 

 

instead of

 

 

VLAN-Name.

 

 

 

 

Configuring and Managing Access Rules for Administrative Users

The 3Com Mobility System supports two types of access rules for administrative users, based on how the administrator accesses the WX switch:

„Administrative access

Users with this access rule connect to the WX switch using Telnet or Secure Shell (SSH).

By default, if no authentication has been set for administrative users, the local WX user database authenticates all incoming Telnet or SSH sessions.

After you have configured authentication for administrative users, only usernames matching the user glob specified for authentication can successfully access the WX using Telnet or SSH. Any other username-and-password combinations fail authentication.

„Console access

Users with this access rule connect to the WX switch using a console cable that is plugged directly to the WX switch.

By default, if no authentication has been set for console users, any username-and-password combination is able to log in using the console. (In the CLI, entering a carriage return for the username and password also allows access through the console.)

After you have configured authentication for console users, only usernames matching the user glob specified for authentication can successfully access the console. Any other username-and-password combinations fail authentication.

Page 280
Image 280
HP Manager Software manual Attribute Description Valid Values Vlan-name