Configuring Security
Management Access Authentication
Cisco Small Business 300 Series Managed Switch Administration Guide 200
16
• Usage Type—Enter the RADIUS server authentication type. The options are:
- Login—RADIUS server is used for authenticating users that want to
administer the switch.
- 802.1X—RADIUS server is used for authentication in 802.1x Access
Control.
- All—RADIUS server is used for authenticating user that wants to
administer the switch and for authentication in 802.1X Access Control.
STEP 4 Click Apply. The RADIUS server is added, and the switch is updated.
Management Access Authentication
You can assign authentication methods to management access methods, such as
SSH, console, Telnet, HTTP, and HTTPS. This authentication can be performed
locally or on an external server, such as a TACACS+ or a RADIUS server.
User authentication occurs in the order that the authentication methods are
selected. If the first authentication method is not available, the next selected
method is used. For example, if the selected authentication methods are RADIUS
and Local, and all configured RADIUS servers are queried in priority order and do
not reply, the user is authenticated locally.
If an authentication method fails or the user has insufficient privilege level, the user
is denied access to the switch. In other words, if authentication fails at an
authentication method, the switch stops; it does not continue and does not
attempt to use the next authentication method.
To define authentication methods for an access method:
STEP 1 Click Security > Management Access Authentication. The Management Access
Authentication Page displays.
STEP 2 Select an access method from the Application list.
STEP 3 Use the arrows to move the authentication method between the Optional Methods
column and the Selected Methods column. The first method selected is the first
method that is used.
To Next Page
Loading...
