10-6 Administrator’s Handbook
• “TACACS+ server authentication” on page
RADIUS server authentication
Advanced Security Options |
| ||
| + | ||
| + | ||
Remote Authentication... | Local only | ||
Security Databases... | Remote only | ||
Remote Server Addr/Name: | Remote then Local | ||
Remote Server Secret: | Remote then Lcl/Ser. Only | ||
Alt Remote Server Addr/Name: | Local then Remote | ||
Alt Remote Server Secret: | + | ||
RADIUS Identifier: |
|
|
|
RADIUS Server Authentication Port: | 1812 |
| |
Remote Access Privileges... |
| Custom |
|
Telnet Server Port: |
| 23 |
|
MAC Address Authentication... |
|
|
|
LAN (Ethernet) IP Filter Set... |
|
|
|
Remove Filter Set |
|
|
|
•You select your desired mode by using the Security Databases
•Choosing Local Only, the default, selects the local authentication database. The database consists of between one and four username and password pairs. This requires someone seeking menu console or command line interface configuration access to log in with a username and password when at least one username and password pair have been configured locally in the router.
•Choosing Remote Only causes the router to ignore the local database and to authenticate users using the configured RADIUS server.
•Choosing Remote then Local causes the router to attempt to authenticate a user first using a RADIUS server and then, if that fails, using the local authentication database.
•Choosing Remote then Lcl/Ser. Only causes the router to attempt to authenticate a user first using a RADIUS server and then, if that fails, using the local authentication database. If RADIUS authentica- tion fails, the router will authenticate the user using the local authentication database only if the user is accessing the menu console or CLI through the
•Choosing Local then Remote causes the router to attempt to authenticate a user first using the local authentication database, and then, if that fails using the configured RADIUS server.
