Radius1 Configuration on Switch1 and Switch2 | Q-Logic 5000 guide

3 – Planning Fabric Security

S

1.Configure the Radius_1 host as a RADIUS server on Switch_1 and Switch_2 to authenticate device logins. Specify the server IP address and the secret with which the switches will authenticate with the server. Configure the switches so that devices authenticate through the switches only if the RADIUS server is unavailable.

Radius_1 Configuration on Switch_1 and Switch_2

Device Authentication Order

Total Servers

Device Authentication Server

Server IP Address

Secret

RadiusLocal – Authenticate devices using the RADIUS server security database first. If the RADIUS server is unavailable, then use the local switch secu- rity database.

1 – Enables support for one RADIUS server

True – Enables Radius_1 to authenticate device log- ins.

10.20.30.40

1234567890123456 – 16-character ASCI string (MD5 hash). This is the secret that allows direct communica- tion with the RADIUS server.

3-24	59096-04 A

Image 64

Q-Logic 5000 manual Radius1 Configuration on Switch1 and Switch2

Contents

SANbox 5000 Series Fibre Channel Switch Installation Guide Document Revision History Table of Contents Section Planning Section Installation Section Removal/Replacement List of Figures Page Introduction Intended Audience Related Materials New in this Release Safety Notices Sicherheitshinweise Communications Statements Federal Communications Commission FCC Class a Statement CE Statement Vcci Class a Statement MIC Class a Statement model 5200 only Laser Safety Information Electrostatic Discharge Sensitivity Esds Precautions Pièces Accessibles Accessible PartsZugängliche Teile General Public License Preamble 13.2 Introduction General Public License Introduction General Public License Introduction General Public License Introduction General Public License How to Apply These Terms to Your New Programs Copyright C yyyy name of author Availability Technical SupportTraining Contact Information Support Headquarters General Description Resetting a Switch Maintenance ButtonChassis Controls and LEDs Placing the Switch in Maintenance Mode Chassis LEDs System Fault LED Amber Input Power LED GreenHeartbeat LED Green Fibre Channel Ports Fibre Channel Ports Port Logged-In LED Green Port LEDsPort Activity LED Green Transceivers Port Types Ethernet Port Ethernet Port Serial Port Serial Port Pin Identification Power Supplies and Fans Model 5202/5602 Switch Power Supplies Switch Management QuickTools Web Applet Enterprise Fabric Suite Command Line InterfaceApplication Programming Interface Simple Network Management Protocol Storage Management Initiative-Specification SMI-SFile Transfer Protocols General Description Switch Management 59096-04 a Planning Devices Device Access Performance Zoning Database Limits Distance Extended Credit Distances and Cable Lengths Bandwidth Latency Feature Licensing Multiple Chassis Fabrics Optimizing Device Performance Domain ID, Principal Priority, and Domain ID Lock Two-Switch Stack Stacking Four-Switch Stack Six Switch Stack Common Topologies Cascade Topology Cascade-with-a-Loop Topology Mesh Topology Mesh Topology MultiStage Topology Multistage Topology Switch Services Fabric Security Connection Security User Account Security Port Binding Device Security Security Example Switches and HBAs with Authentication Security Example Switches and HBAs HBA1 ISL Group on Switch1 GroupISL1 Security Example Radius Server 10. Security Example Radius Server Radius1 Configuration on Switch1 and Switch2 HBA1 Save and activate SecuritySet2 on Switch2 Security Example Host Authentication 11. Security Example Management Server MS Group Group1 Fabric Management Planning Fabric Management 59096-04 a Installation Site Requirements Fabric Management Workstation Switch Power RequirementsEnvironmental Conditions Installing a Switch Mount the Switch Avertissement Mounting the Model 5200/5600 Switch in a Rack without Rails Install Transceivers Removing 10-Gbps Port Covers Configure the Workstation Choose Make New Connection Configuring the Workstation Serial Port Connect the Workstation to the Switch Workstation Cable Connections Connect the Switch to AC Power Installation Installing a Switch Installation Installing a Switch Configure the Switch Configuration Wizard Prompts Telnet 10.0.0.1 Switch Login admin Password Cable Devices to the Switch Installing Firmware Installation Installing Firmware Using the CLI to Install Firmware Using QuickTools to Install FirmwareOne-Step Firmware Installation Enter the password for your account name FTP only Custom Firmware Installation Adding a Switch to an Existing Fabric Installing Feature License Keys Installation Installing Feature License Keys 59096-04 a Diagnostics/Troubleshooting Chassis Diagnostics Input Power LED Is Extinguished System Fault LED Is Illuminated Power-On Self Test Diagnostics Heartbeat LED Blink Patterns Fatal Post Error Blink Pattern Internal Firmware Failure Blink Pattern Configuration File System Error Blink Pattern Over Temperature Blink Pattern Logged-In LED Indications Logged-In LED EPort Isolation Excessive Port Errors Diagnostics/Troubleshooting Power-On Self Test Diagnostics Transceiver Diagnostics Power Supply Diagnostics Model 5202/5602 Switch Power Supply LEDs Recovering a Switch Using Maintenance Mode Exiting the Maintenance Menu Unpacking a Firmware Image File in Maintenance Mode Resetting the Network Configuration in Maintenance Mode Resetting User Accounts in Maintenance ModeCopying Log Files in Maintenance Mode Removing the Switch Configuration in Maintenance Mode Resetting the Switch in Maintenance Mode Remaking the File System in Maintenance ModeUpdating the Boot Loader in Maintenance Mode Removal/Replacement SFP Transceiver Removal and Replacement Power Supply Removal and Replacement Power Supply Removal Power Supply Installation Page Specifications Fabric Specifications Specifications Fabric Specifications Maintainability Dimensions Snmp FTP Tftp Electrical Environmental Regulatory Certifications Glossary Fdmi FRU MIB WWN Page Index Index-2 59096-04 a LED Index-4 59096-04 a 59096-04 a Index-5