Contents
ix
Catalyst 3750 Switch Software Configuration Guide
78-16180-02
Logging into and Exiting a Privilege Level 9-10
Controlling Switch Access with TACACS+ 9-10
Understanding TACACS+ 9-10
TACACS+ Operation 9-12
Configuring TACACS+ 9-13
Default TACACS+ Configuration 9-13
Identifying the TACACS+ Server Host and Setting the Authentication Key 9-13
Configuring TACACS+ Login Authentication 9-14
Configuring TACACS+ Authorization for Privileged EXEC Access and Network Services 9-16
Starting TACACS+ Accounting 9-17
Displaying the TACACS+ Configuration 9-17
Controlling Switch Access with RADIUS 9-18
Understanding RADIUS 9-18
RADIUS Operation 9-19
Configuring RADIUS 9-20
Default RADIUS Configuration 9-20
Identifying the RADIUS Server Host 9-21
Configuring RADIUS Login Authentication 9-23
Defining AAA Server Groups 9-25
Configuring RADIUS Authorization for User Privileged Access and Network Services 9-27
Starting RADIUS Accounting 9-28
Configuring Settings for All RADIUS Servers 9-29
Configuring the Switch to Use Vendor-Specific RADIUS Attributes 9-29
Configuring the Switch for Vendor-Proprietary RADIUS Server Communication 9-31
Displaying the RADIUS Configuration 9-31
Controlling Switch Access with Kerberos 9-32
Understanding Kerberos 9-32
Kerberos Operation 9-34
Authenticating to a Boundary Switch 9-35
Obtaining a TGT from a KDC 9-35
Authenticating to Network Services 9-35
Configuring Kerberos 9-36
Configuring the Switch for Local Authentication and Authorization 9-36
Configuring the Switch for Secure Shell 9-37
Understanding SSH 9-38
SSH Servers, Integrated Clients, and Supported Versions 9-38
Limitations 9-39
Configuring SSH 9-39
Configuration Guidelines 9-39
To Next Page
Loading...
