Enterasys SecureStack C2

Enterasys SecureStack C2

607 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

SecureStack C2 Configuration Guide 18-1

18

Security Configuration

ThischapterdescribestheSecurityConf igurationsetofcommandsandhowtousethem.

Overview of Security Methods

Thefollowingsecuritymethodsareavailableforcontrollingwhichusersareallowedtoaccess,

monitor,andmanagetheswitch.

•Loginuseraccountsandpasswords–usedtologintotheCLIviaaTelnetconnectionorlocal

COMportconnection.Fordetails,referto“SettingUserAccountsandPasswords”

on

page 3‐1.

•HostAccessControlAuthentication(HACA)–authenticatesuseraccessofTelnet

management,consolelocalmanagementandWebViewviaacentralRADIUSClient/Server

application.WhenRADIUSisenabled,thisessentiallyoverridesloginuseraccounts.When

HACAisactiveperavalidRADIUSconfiguration,theusernamesandpasswordsused

to

accesstheswitchviaTelnet,SSH,WebView,andCOMportswillbevalidatedagainst the

configuredRADIUSserver.OnlyinthecaseofaRADIUStimeoutwillthosecredentialsbe

comparedagainstcredentialslocallyconfiguredontheswitch.

Fordetails,referto

“ConfiguringRADIUS”onpage 18‐3.

•SNMPuserorcommunitynames–allowsaccesstotheSecureStackC2switchviaanetwork

SNMPmanagementapplication.Toaccesstheswitch,youmustenteranSNMPuseror

communitynamestring.Thelevelofmanagementaccessisdependenton

theassociated

accesspolicy.Fordetails,refertoChapter 6.

• 802.1XPortBasedNetworkAccessControlusingEAPOL(ExtensibleAuthentication

Protocol)–providesamechanismviaaRADIUSserverforadministratorstosecurely

For information about... Refer to page...

Overview of Security Methods 18-1

Configuring RADIUS 18-3

Configuring 802.1X Authentication 18-9

Configuring MAC Authentication 18-19

Configuring Multiple Authentication Methods 18-30

Configuring VLAN Authorization (RFC 3580) 18-41

Configuring MAC Locking 18-46

Configuring Port Web Authentication (PWA) 18-57

Configuring Secure Shell (SSH) 18-68

Configuring Access Lists 18-70

Table of Contents

Related product manuals

Preview: SecureStack C2 C2G124-24

SecureStack C2 C2G124-24

Preview: SecureStack A2 A2H124-24

SecureStack A2 A2H124-24

Preview: SecureStack B3 B3G124-48

SecureStack B3 B3G124-48

SecureStack A2 A2H254-16

Preview: SecureStack B3 B3G124-24P

SecureStack B3 B3G124-24P

Preview: SecureStack B2 B2G124-48P

SecureStack B2 B2G124-48P

Enterasys SSA-G1018-0652

Preview: Enterasys D-Series

Enterasys D-Series

Preview: Enterasys C3G124-24

Enterasys C3G124-24

Preview: Enterasys 08H20G4-24

Enterasys 08H20G4-24

Preview: Enterasys Matrix-V V2H124-24

Enterasys Matrix-V V2H124-24

Enterasys Matrix E1 1G694-13