Avaya ERS 8600 - Software Release 5.1.4.0; Important Notices

To Next Page

To Previous Page

Switch User Authentication using Identity Engines Ignition Server Technical Configuration Guide

[July 2010

avaya.com

1. Overview: RADIUS User Authentication

using Identify Engines

This document provides the framework for implementing user Authentication, Authorization, and

Accounting for Avaya switches.

1.1 RADIUS Support on Avaya Switches

RADIUS

authenti-

cation

802.1x

(EAP)

RADIUS

authenti-

cation

RADIUS

accoun-

ting

802.1x

(EAP)

RADIUS

account-

ing

RADIUS

account-

ing for CLI

commands

RADIUS

user

access

profile

RADIUS

SNMP

account-

ing

ERS 8600

Yes

ERS 8300

Yes

ERS 1600

Yes

ES 460/470

Yes

ERS 2500

Yes

ERS 4500

Yes

ERS 5500

Yes

ERS 5600

Yes

1.2 User Authentication using ERS1600, ERS8300, or

ERS8600

The ERS1600, ERS8300, and ERS8600 each support six different user access levels. The access level

is determined by the RADIUS attribute value sent back to the switch. The switch uses RADIUS Vendor-

Specific Attributes (IETF Attribute 26) to support its own extended attributes. Vendor identifier 1584 (Bay

Networks) attribute type 192 is used where the value is a number from 0 to 6. The following chart displays

the RADIUS attribute values and corresponding access level.

Access Level

VSA Attribute 26 – Vendor Identifier 1584

Type 192 value

None-Access

Read-Only-Access

Layer 1-Read-Write-Access

Layer 2-Read-Write-Access

Layer 3-Read-Write-Access

Avaya ERS 8600 - Software Release 5.1.4.0; Important Notices

Table of Contents

Other manuals for Avaya ERS 8600

Related product manuals