Enterasys SecureStack C2 C2G170-24

Enterasys SecureStack C2 C2G170-24

698 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

Configuring RADIUS

SecureStack C2 Configuration Guide 23-3

TheRADIUSFilter‐IDattributeissimplyastringthatisformattedintheRADIUSAccess‐Accept

packetsentbackfromtheRADIUSservertotheswitchduringtheauthenticationprocess.

EachusercanbeconfiguredintheRADIUSserverdatabasewithaRADIUSFilter‐IDattribute

thatspecifiesthename

ofthepolicyprofileand/ormanagementleveltheusershouldbeassigned

uponsuccessfulauthentication.Duringtheauthenticati onprocess,whentheRADIUSserver

returnsaRADIUSAccess‐AcceptmessagethatincludesaFilter‐IDmatchingapolicyprofilename

configuredontheswitch,theswitchthendynamicallyappliesthepolicy

profiletothephysical

porttheuser/deviceisauthenticatingon.

Filter-ID Attribute Formats

EnterasysNetworkssupportstwoFilter‐IDformats—“decorated”and“undecorated.”The

decoratedformathasthreeforms:

•Tospecifythepolicyprofiletoassigntotheauthenticatinguser(networkaccess

authentication):

Enterasys:version=1:policy=string

wherestringspecifiesthe policyprofilename.Policyprofilenamesarecase‐sensitive.

•Tospecifyamanagementlevel(managementaccess

authentication):

Enterasys:version=1:mgmt=level

wherelevelindicatesthemanagementlevel,eitherro,rw,orsu.

•Tospecifybothmanagementlevelandpolicyprofile:

Enterasys:version=1:mgmt=level:policy=string

Theundecoratedformatissimplyastringthatspecifiesapolicyprofilename.Theundecorated

formatcannotbeusedformanagementaccessauthentication.

DecoratedFilter‐IDsareprocessed

firstbytheswitch.IfnodecoratedFilter‐IDsarefound,then

undecoratedFilter‐IDsare processed.IfmultipleFilter‐IDsarefoundthatcontainconflicting

values,aSyslogmessageisgenerated.

Configuring RADIUS

Purpose

Toperformthefollowing:

•ReviewtheRADIUSclient/serverconfigurationontheswitch.

•EnableordisabletheRADIUSclient.

•Setlocalandremoteloginoptions.

•Setprimaryandsecondaryserverparameters,includingIPaddress,timeoutperiod,

authenticationrealm,andnumberofuserloginattemptsallowed.

•ResetRADIUSserversettingstodefaultvalues.

• ConfigureaRADIUS

accountingserver.

Table of Contents

Other manuals for Enterasys SecureStack C2 C2G170-24

Hardware Installation Guide74 pages

Related product manuals

Preview: SecureStack C2 C2G124-24

SecureStack C2 C2G124-24

Preview: Enterasys SecureStack C2

Enterasys SecureStack C2

Preview: SecureStack A2 A2H124-24

SecureStack A2 A2H124-24

Preview: SecureStack B3 B3G124-48

SecureStack B3 B3G124-48

SecureStack A2 A2H254-16

Preview: SecureStack B3 B3G124-24P

SecureStack B3 B3G124-24P

Preview: SecureStack B2 B2G124-48P

SecureStack B2 B2G124-48P

Enterasys SSA-G1018-0652

Preview: Enterasys C3G124-24

Enterasys C3G124-24

Preview: Enterasys B5G124-24

Enterasys B5G124-24

Preview: Enterasys 08H20G4-24

Enterasys 08H20G4-24

Preview: Enterasys Matrix-V V2H124-24

Enterasys Matrix-V V2H124-24