Sun Microsystems 5802 Adding a RADIUS Server

96 Enterprise Fabric Suite 2007 User Guide • September 2008

the response to the challenge. This information is forwarded to the RADIUS server

for authentication and the server responds with the results, either an accept or reject.

The RADIUS client does not need to be configured with any user authentication

information, this all resides on the RADIUS server and can be managed centrally

and separately from the clients. In addition, no passwords are exchanged between

the RADIUS server and its clients. Authentication of requests from a RADIUS client

to the server and responses from the server to a client can also be authenticated. This

requires sharing a secret between the server and client. The accounting RADIUS

supports the auditing of the users and switch services such as Telnet, FTP, and

switch management applications.

Note – The RADIUS server and Security dialogs are available only on a secure (SSL)

fabric and on the entry switch (out of band switch). To enable the SSL option for a

switch, open the Switch menu and select Services. In the Services dialog, select the

SSL option. You must then close the fabric and re-establish a connection to secure

the fabric using SSL.

Note – You may need to configure a security set for RADIUS device security that

will be used in authenticating ISLs. Refer to “Creating a Security Set” on page88 for

more information.

Adding a RADIUS Server

When you add a RADIUS server, you provide a method to centralize the

management of authentication passwords over a network.

Contents

Main Please Recycle Contents Page Page Page Page Page Page Page Page Page Figures Page Page Page Tab le s Page Preface How This Document Is Organized Typographic Conventions Note do not display correctly, change the character encoding in your browser to Unicode UTF-8. Related Documentation Documentation, Support, Training, and Service Sun Welcomes Your Comments Page Using Enterprise Fabric Suite 2007 Workstation Requirements Installing Enterprise Fabric Suite 2007 Note Starting Enterprise Fabric Suite 2007 Note Page Exiting Enterprise Fabric Suite 2007 Page Uninstalling Enterprise Fabric Suite 2007 Changing the Encryption Key for the Default Fabric View File Saving and Opening Fabric View Files Setting Enterprise Fabric Suite 2007 Preferences Page Using Online Help Page Page Page Fabric Tree Note Graphic Window Data Window and Tabs Menus Topology Display Menu Faceplate Display Menu Page Menu Shortcut Keys Popup Menus Note Opening the Topology Popup Menus Opening the Faceplate Popup Menus Too l Ba r Using the Topology Display Note Working with Switches and Links Selecting Switches and Links Arranging Switches in the Topology Display Topology Data Windows Using the Faceplate Display Note Alerts Panel Note Port Views and Status Wor king wit h Por ts Selecting Ports Note Faceplate Data Windows Page Managing Fabrics Tracking Fabric Firmware and Software Ver si on s Saving a Version Snapshot Viewing and Comparing Version Snapshots Exporting Version Snapshots to a File Managing the Fabric Database Adding a Fabric Page Note Removing a Fabric Note Opening a Fabric View File Note Saving a Fabric View File Rediscovering a Fabric Deleting Switches and Links Adding a New Switch to a Fabric Replacing a Failed Switch Caution Displaying Fabric Information Link and Stack Link Data Windows Devices Data Window Displaying Fabric Status Note Displaying the Event Browser Page Note Filtering the Event Browser Sorting the Event Browser Note Saving the Event Browser to a File Verifying Fibre Channel Connections FC Ping Dialog Note FC TraceRoute Dialog Note Working with Device Information and Nicknames Displaying Detailed Device Information Note Exporting Device Information to a File Managing Nicknames for Fabric Devices Note Creating a Nickname Editing a Nickname Deleting a Nickname Exporting Nicknames to a File Importing a Nicknames File Enabling Fabric Services Enabling SNMP Configuration Enabling In-band Management Page Managing Fabric Zoning Zoning Concepts Zones Aliases Zone Sets Note Zoning Database Viewing Zoning Limits and Properties Active Zoneset Data Window Configured Zonesets Data Window Active Zoneset Data Window Zoning a Fabric Using the Zoning Wizard Managing the Zoning Database Editing the Zoning Database Note 12 Page Page Resolving Zoning Capture Active Zoning Restore Configured Zoning Capture Merged Zoning View Merged/Configured Differences Merge Auto Save Note Default Zone Discard Inactive Saving the Zoning Database to a File Restoring the Zoning Database from a File Caution Restoring the Default Zoning Database Caution Managing Zone Sets Creating a Zone Set Activating and Deactivating a Zone Set Renaming a Zone Set Removing a Zone Set Managing Zones Note Creating a Zone in a Zone Set Note Copying a Zone to a Zone Set Adding Zone Members Note Renaming a Zone Removing a Zone Member Removing a Zone from a Zone Set Removing a Zone from All Zone Sets Note Managing Aliases Creating an Alias Adding a Member to an Alias Removing an Alias from All Zones Merging Fabrics and Zoning Zone Merge Failure Zone Merge Failure Recovery Note Page Managing Fabric Security Security Consistency Checklist Connection Security User Account Security Note Port Security Note Configured Security Data Window Note Active Security Data Window Note Fabric Binding Device Security Note Managing Device Security Using the Edit Security Dialog Note Creating a Security Set Create a Security Group Dialog Creating a Security Group Create a Security Group Member Dialog Page Creating a Security Group Member Editing the Security Configuration on a Switch Viewing Properties of a Security Set or Security Group Using the Security Config Dialog Archiving a Security Configuration to a File Activating a Security Set Deactivating a Security Set Using RADIUS Servers Note Adding a RADIUS Server Page Page Removing a RADIUS Server Editing RADIUS Server Information Modifying Authentication Order RADIUS Server Information Page Managing Switches Managing User Accounts Note Creating User Accounts Removing a User Account Changing a User Account Password Modifying a User Account Displaying Switch Information Switch Data Window Page Page Page Page Page Page Configuring Port Threshold Alarms Note Paging a Switch Setting the Date/Time and Enabling NTP Client Note Resetting a Switch Note Managing Switch Stacks Configuring a Switch Using the Configuration Wizard Note Switch Properties Domain ID and Domain ID Lock Note Syslog Symbolic Name Switch Administrative States Broadcast Support In-band Management Fabric Device Management Interface Advanced Switch Properties Timeo ut Value s Note Managing System Services Note Archiving a Switch Restoring a Switch Caution Page Testing a Switch Caution Note Restoring the Factory Default Configuration Page Configuring the Network Network Properties Network IP Configuration IPv4 and IPv6 Addressing Note Page Network DNS Configuration Page Network IP Security Security Policies Security Associations Note Create IP Security Association Dialog The Create IP Security Association dialog allows you to define a network IP security association. Page Create IP Security Policy Dialog The Create IP Security Policy dialog allows you to define a network IP security policy. Page Configuring SNMP SNMP Properties Note SNMP Configuration SNMP Trap Configuration Note SNMP v3 Security Note Page the user, click the OK button to save the settings and close the dialog. Downloading a Support File Installing Feature License Keys Installing Firmware Caution Note Using Call Home Page Page Using the Call Home Profile Manager Using the Call Home Profile Editor Page Page dialog. Applying All Profiles on a Switch to Other Switches Using the Call Home Message Queue Testing Call Home Profiles Page Page Managing Ports Displaying Port Information Port Statistics Data Window Page Page Page Port Information Data Window Page Advanced Group Extended Credits Group Digital Diagnostics Monitoring Media Group DDM Group Page Page Monitoring Port Status Displaying Port Types Displaying Port Operational States Displaying Port Speeds Displaying Transceiver Media Status Configuring Ports Note Changing Port Symbolic Name Changing Port Administrative States Changing Port Speeds Note Changing Port Types I/O Stream Guard Device Scan Auto Performance Tuning and AL Fairness Using the Extended Credits Wizard Page Note Resetting a Port Moving a Licensed Port Tes ti ng P ort s Page Note Graphing Port Performance Starting Performance View Exiting Performance View Saving and Opening Performance View Files Changing the Default Performance View File Encryption Key Setting Performance View Preferences Setting the Polling Frequency Note Displaying Graphs Arranging Graphs in the Display Note Customizing Graphs Page Note Setting Global Graph Type Rescaling a Selected Graph Printing Graphs Saving Graph Statistics to a File Glossary 2007 Enterprise Fabric Suite 2007 Page Page Index A B C D E F G H I L M R S T U V W X