AUTHENTICATION COMMANDS

Command Mode

Global Configuration

Command Usage

RADIUS uses UDP which only offers best effort delivery. Also, note that RADIUS encrypts only the password in the access-request packet from the client to the server.

RADIUS logon authentication assigns a specific privilege level for each user name and password pair. The user name, password, and privilege level must be configured on the authentication server.

You can specify two authentication methods in a single command to indicate the authentication sequence. For example, if you enter “authentication login radius local,” the user name and password on the RADIUS server is verified first. If the RADIUS server is not available, then the local user name and password is checked.

Example

Console(config)#authentication login radius

Console(config)#

Related Commands

username - for setting the local user names and passwords (4-33)

RADIUS Client

Remote Authentication Dial-in User Service (RADIUS) is a logon authentication protocol that uses software running on a central server to control access to RADIUS-aware devices on the network. An authentication server contains a database of multiple user name/password pairs with associated privilege levels for each user or group that require management access to a switch.

Command

Function

Mode

Page

radius-server host

Specifies the RADIUS server

GC

4-62

 

 

 

 

radius-server port

Sets the RADIUS server network port

GC

4-63

 

 

 

 

radius-server key

Sets the RADIUS encryption key

GC

4-63

 

 

 

 

4-61

Page 347
Image 347
SMC Networks SMC6724L3 manual Radius Client, Username for setting the local user names and passwords