2.3 Logon Authentication Control
2.3.1 Overview
In the previous section, we have described how to control the access to the network devices
by configuring the password stored in local files. Besides the line password protection and
local authentication, if the AAA mode is enabled, we can also carry out the authentication of
the management privilege according to the username and password by some servers when
you login the switches for the management. At present, we can also support use the
RADIUS servers to control the management privilege of the network devices for users
according to the login username and password.
When users login to the switch, we can authenticate users according to the username and
password pairs stored centrally on a RADIUS server instead of local files. The divice sends
the encrypted user information to the RADIUS server for verification, and the server will
uniformly configures the username, user password, shared password and access policy.
These make it easy to manage and control user access, and improve the security of the user
information.
2.3.2 Configuring Local Users
Our products support the identity authentication system that is based on the local database,
which is used for the local authentication through the method list in AAA mode, and the local
logon authentication for line logon management in non-AAA mode.
To establish the username identity authentication, run the following specific commands in the
global configuration mode:
To Next Page
Loading...
Need help?
General