– 165 –
7 Authentication Commands
You can configure this switch to authenticate users logging into the system for
management access using local or remote authentication methods. Port-based
authentication using IEEE 802.1X can also be configured to control either
management access to the uplink ports or client access
3
to the data ports.
User Accounts
The basic commands required for management access are listed in this section. This
switch also includes other options for password checking via the console or a
Telnet connection (page 100), user authentication via a remote authentication
server (page 165), and host access authentication for specific ports (page 200).
Table 31: Authentication Commands
Command Group Function
User Accounts Configures the basic user names and passwords for management
access
Authentication Sequence Defines logon authentication method and precedence
RADIUS Client Configures settings for authentication via a RADIUS server
TACACS+ Client Configures settings for authentication via a TACACS+ server
AAA Configures authentication, authorization, and accounting for network
access
Web Server Enables management access via a web browser
Telnet Server Enables management access via Telnet
Secure Shell Provides secure replacement for Telnet
802.1X Port Authentication Configures host authentication on specific ports using 802.1X
Management IP Filter Configures IP addresses that are allowed management access
3. For other methods of controlling client access, see “General Security Measures” on
page 219.
Table 32: User Access Commands
Command Function Mode
enable password Sets a password to control access to the Privileged Exec
level
GC
username Establishes a user name-based authentication system at
login
GC
To Next Page
Loading...
Need help?
General
