CONFIGURING THE SWITCH

Configuring Radius Logon Authentication

Remote Authentication Dial-in User Service (RADIUS) is an authentication protocol that uses a central server to control access to RADIUS-compliant devices on the network. A RADIUS server can be programmed with a database of multiple user name/password pairs and associated privilege levels for each user or group that requires management access to this switch using the console port, Telnet or the Web.

When setting up privilege levels on the RADIUS server, level 0 allows guest (CLI - Normal Exec) access to the switch. Only level 15 allows administrator (CLI - Privileged Exec) access.

Command Attributes

Authentication – Select the authentication, or authentication sequence required:

-Radius – User authentication is performed using a RADIUS server only.

-Local – User authentication is performed only locally by the switch.

-Radius, Local – User authentication is attempted first using a RADIUS server, then locally by the switch.

-Local, Radius – User authentication is first attempted locally by the switch, then using a RADIUS server.

Server IP Address – The IP address of the RADIUS server.

Server Port Number – The UDP port number used by the RADIUS server.

Secret Text String – The text string that is shared between the switch and the RADIUS server.

Number of Server Transmits – The number of request transmits to the RADIUS server before failure.

2-14

Page 44
Image 44
SMC Networks SMC6750L2 manual Configuring Radius Logon Authentication, Command Attributes