Foundry Networks Switch and Router

To Next Page

To Previous Page

December 2000 v

SETTING A TELNET PASSWORD ...........................................................................................................3-9

ETTING PASSWORDS FOR MANAGEMENT PRIVILEGE LEVELS ..............................................................3-10

ECOVERING FROM A LOST PASSWORD ..............................................................................................3-11

ISPLAYING THE SNMP COMMUNITY STRING ......................................................................................3-12

ISABLING PASSWORD ENCRYPTION ...................................................................................................3-12

SETTING UP LOCAL USER ACCOUNTS .......................................................................................................3-12

ONFIGURING A LOCAL USER ACCOUNT .............................................................................................3-13

STABLISHING SNMP COMMUNITY STRINGS .............................................................................................3-14

ENCRYPTION OF SNMP COMMUNITY STRINGS ...................................................................................3-15

DDING AN SNMP COMMUNITY STRING .............................................................................................3-15

ISPLAYING THE SNMP COMMUNITY STRINGS ....................................................................................3-16

CONFIGURING TACACS/TACACS+ SECURITY .........................................................................................3-18

OW TACACS+ DIFFERS FROM TACACS .........................................................................................3-18

TACACS/TACACS+ A

UTHENTICATION, AUTHORIZATION, AND ACCOUNTING .......................................3-18

TACACS/TACACS+ CONFIGURATION CONSIDERATIONS ....................................................................3-22

DENTIFYING THE TACACS/TACACS+ SERVERS ...............................................................................3-22

ETTING OPTIONAL TACACS/TACACS+ PARAMETERS .....................................................................3-23

ONFIGURING AUTHENTICATION-METHOD LISTS FOR TACACS/TACACS+ .........................................3-24

ONFIGURING TACACS+ AUTHORIZATION .........................................................................................3-25

ONFIGURING TACACS+ ACCOUNTING ..............................................................................................3-27

ONFIGURING AN INTERFACE AS THE SOURCE FOR ALL TACACS/TACACS+ PACKETS ......................3-27

ISPLAYING TACACS/TACACS+ STATISTICS AND CONFIGURATION INFORMATION ..............................3-28

ONFIGURING RADIUS SECURITY ............................................................................................................3-33

RADIUS A

UTHENTICATION, AUTHORIZATION, AND ACCOUNTING ..........................................................3-33

RADIUS C

ONFIGURATION CONSIDERATIONS ......................................................................................3-36

RADIUS C

ONFIGURATION PROCEDURE ..............................................................................................3-36

ONFIGURING FOUNDRY-SPECIFIC ATTRIBUTES ON THE RADIUS SERVER ..........................................3-36

DENTIFYING THE RADIUS SERVER TO THE FOUNDRY DEVICE ............................................................3-37

ETTING RADIUS PARAMETERS ........................................................................................................3-38

ONFIGURING AUTHENTICATION-METHOD LISTS FOR RADIUS ............................................................3-38

ONFIGURING RADIUS AUTHORIZATION .............................................................................................3-40

ONFIGURING RADIUS ACCOUNTING .................................................................................................3-40

ONFIGURING AN INTERFACE AS THE SOURCE FOR ALL RADIUS PACKETS .........................................3-41

ISPLAYING RADIUS CONFIGURATION INFORMATION ..........................................................................3-42

ONFIGURING AUTHENTICATION-METHOD LISTS ........................................................................................3-47

ONFIGURATION CONSIDERATIONS FOR AUTHENTICATION-METHOD LISTS ............................................3-48

XAMPLES OF AUTHENTICATION-METHOD LISTS ..................................................................................3-48

CHAPTER 4

ONFIGURING SECURE SHELL..................................................................... 4-1

SETTING THE HOST NAME AND DOMAIN NAME .............................................................................................4-2

ENERATING A HOST RSA KEY PAIR ..........................................................................................................4-2

ROVIDING THE PUBLIC KEY TO CLIENTS ..............................................................................................4-2

ONFIGURING RSA CHALLENGE-RESPONSE AUTHENTICATION .....................................................................4-3

MPORTING AUTHORIZED PUBLIC KEYS INTO THE FOUNDRY DEVICE .......................................................4-3

Main Page

Foundry Networks Switch and Router - Page 5

Table of Contents

Related product manuals