Chapter 25 AAA

25.2.3 AAA Setup

Use this screen to configure authentication, authorization and accounting settings on the Switch. Click on the AAA Setup link in the AAA screen to view the screen as shown.

Figure 114 Advanced Application > AAA > AAA Setup

The following table describes the labels in this screen.

Table 75 Advanced Application > AAA > AAA Setup

LABEL

DESCRIPTION

Authentication

Use this section to specify the methods used to authenticate users accessing the Switch.

 

 

Privilege Enable

These fields specify which database the Switch should use (first, second and third) to

 

authenticate access privilege level for administrator accounts (users for Switch

 

management).

 

Configure the access privilege of accounts via commands (see the Ethernet Switch CLI

 

Reference Guide) for local authentication. The TACACS+ and RADIUS are external

 

servers. Before you specify the priority, make sure you have set up the corresponding

 

database correctly first.

 

You can specify up to three methods for the Switch to authenticate the access privilege

 

level of administrators. The Switch checks the methods in the order you configure them

 

(first Method 1, then Method 2 and finally Method 3). You must configure the settings in

 

the Method 1 field. If you want the Switch to check other sources for access privilege level

 

specify them in Method 2 and Method 3 fields.

 

Select local to have the Switch check the access privilege configured for local

 

authentication.

 

Select radius or tacacs+ to have the Switch check the access privilege via the external

 

servers.

 

 

208

 

ES3500 Series User’s Guide