21-1
Chapter 21: User Authentication Commands
You can configure this switch to authenticate users logging into the system for
management access using local or remote authentication methods. Port-based
authentication using IEEE 802.1X can also be configured to control either
management access to the uplink ports or client access
32
to the data ports.
User Account Commands
The basic commands required for management access are listed in this section.
This switch also includes other options for password checking via the console or a
Telnet connection (page 19-19), user authentication via a remote authentication
server (page 21-1), and host access authentication for specific ports (page 21-24).
Table 21-1 Authentication Commands
Command Group Function Page
User Accounts Configures the basic user names and passwords for management
access
21-1
Authentication Sequence Defines logon authentication method and precedence 21-4
RADIUS Client Configures settings for authentication via a RADIUS server 21-6
TACACS+ Client Configures settings for authentication via a TACACS+ server 21-9
Web Server Settings Enables management access via a web browser 21-11
Telnet Server Settings Enables management access via Telnet 21-14
Secure Shell Settings Provides secure replacement for Telnet 21-15
Port Authentication Configures host authentication on specific ports using 802.1X 21-24
IP Filter Configures IP addresses that are allowed management access 21-33
32. For other methods of controlling client access, see “Client Security Commands” on page
22-1.
Table 21-2 User Access Commands
Command Function Mode Page
username Establishes a user name-based authentication system at login GC 21-2
enable password Sets a password to control access to the Privileged Exec level GC 21-3
To Next Page
Loading...
