– 583 –
24 AUTHENTICATION COMMANDS
You can configure this switch to authenticate users logging into the system
for management access using local or remote authentication methods.
Port-based authentication using IEEE 802.1X can also be configured to
control either management access to the uplink ports or client access
8
to
the data ports.
USER ACCOUNTS
The basic commands required for management access are listed in this
section. This switch also includes other options for password checking via
the console or a Telnet connection (page 520), user authentication via a
remote authentication server (page 583), and host access authentication
for specific ports (page 619).
8. For other methods of controlling client access, see "General Security Measures" on
page 637.
Table 59: Authentication Commands
Command Group Function
User Accounts Configures the basic user names and passwords for management
access
Authentication Sequence Defines logon authentication method and precedence
RADIUS Client Configures settings for authentication via a RADIUS server
TACACS+ Client Configures settings for authentication via a TACACS+ server
AAA Configures authentication, authorization, and accounting for
network access
Web Server Enables management access via a web browser
Telnet Server Enables management access via Telnet
Secure Shell Provides secure replacement for Telnet
802.1X Port
Authentication
Configures host authentication on specific ports using 802.1X
Management IP Filter Configures IP addresses that are allowed management access
Table 60: User Access Commands
Command Function Mode
enable password Sets a password to control access to the Privileged
Exec level
GC
username Establishes a user name-based authentication system
at login
GC
To Next Page
Loading...
Need help?
General