137
− In advanced settings, configure the switch to exclude domain names in the user names
sent to the TACACS server.
− Configure an ISP domain on the switch:
− From the navigation tree, select Security > Authentication > ISP Domains.
− Add ISP domain bbb and set the domain state to Active.
− Select Login as the service type.
− Configure the ISP domain to use TACACS scheme tac for authentication, authorization,
and accounting of login users.
− Configure the user lines for the Stelnet client:
− Log in to the switch through the console port.
− Set the login authentication mode to scheme. (Details not shown.)
− Configure the TACACS server:
− Add a user account on the server. (Details not shown.)
− Configure the authentication, authorization, and accounting settings. (Details not
shown.)
− Configure the user role feature to assign authenticated SSH users the network-admin
user role. (Details not shown.)
− Verifying the configuration
− Initiate an SSH connection to the switch and enter the correct username and password.
The user logs in to the switch.
− Verify that the user can use the commands permitted by the network-admin user role.
PoE configuration example
Network requirements
As shown in Figure 50, configure PoE to meet the following requirements:
• Enable the device to supply power to IP telephones and the AP.
• Enable the device to supply power to IP telephones first when overload occurs.
• Allocate AP a maximum power of 9000 milliwatts.
Figure 50 Network diagram
To Next Page
Loading...
