– 657 –
27 AUTHENTICATION COMMANDS
You can configure this switch to authenticate users logging into the system
for management access using local or remote authentication methods.
Port-based authentication using IEEE 802.1X can also be configured to
control either management access to the uplink ports or client access
10
to
the data ports.
USER ACCOUNTS
The basic commands required for management access are listed in this
section. This switch also includes other options for password checking via
the console or a Telnet connection (page 600), user authentication via a
remote authentication server (page 657), and host access authentication
for specific ports (page 693).
10. For other methods of controlling client access, see "General Security Measures" on
page 707.
Table 52: Authentication Commands
Command Group Function
User Accounts Configures the basic user names and passwords for
management access
Authentication Sequence Defines logon authentication method and precedence
RADIUS Client Configures settings for authentication via a RADIUS server
TACACS+ Client Configures settings for authentication via a TACACS+ server
AAA Configures authentication, authorization, and accounting for
network access
Web Server Enables management access via a web browser
Telnet Server Enables management access via Telnet
Secure Shell Provides secure replacement for Telnet
802.1X Port
Authentication
Configures host authentication on specific ports using 802.1X
Management IP Filter Configures IP addresses that are allowed management access
Table 53: User Access Commands
Command Function Mode
enable password Sets a password to control access to the Privileged
Exec level
GC
username Establishes a user name-based authentication
system at login
GC
To Next Page
Loading...
Need help?
General
