Switch Security 6-103
3. Refer to the following to assess whether an existing user can be used with the local Radius server as is,
requires modification or if a new user is required.
4. Refer to the Available Groups field to view the memberships for existing users.
If the group assignment is insufficient, use the Edit or Add functions to modify/create users or modify
their existing group assignments. For guest users, only the password is editable. For normal (non-guest)
users, the password and group association can be modified.
To modify the attributes of an existing user, select the user from the list and click the Edit button.
Modify the existing user’s guest designation, password, expiry date and group assignments as required
to reflect the user’s current local Radius authentication requirements.
5. If an existing user is no longer needed, select the user from those displayed and click the Delete button
to permanently remove the user.
6. To create a new user for use with the local Radius server, click the Add button and provide the following
information.
User ID Displays the username for this specific user. The name assigned should reflect the
user’s identity and perhaps their status within the switch managed network (guest
versus secure user).
Guest User Displays whether a specific user has been defined as a guest user (with a green
check) or has been configured as permanent user. Guest users have temporary
access.
Start Date Defines the time when Guest User’s privileges commence.
Expiry Date If the user has been assigned guest privileges, they were also assigned a date
when their Radius privileges expire.
CAUTION: If password encryption is not enabled, Radius user passwords are stored in
the running configuration file in clear text. The user passwords are shown as encrypted if
the global password encryption is enabled. The maximum for the file is 5000 users, 100
groups, 25 clients, 5 realms and 2 LDAP servers.
User ID Define a unique user ID that differentiates this user from others with similar
attributes.
Guest User Select the Guest User checkbox to assign this particular user temporary access
to the local Radius server, thus restricting their authentication period to a user
defined interval.
Password Enter the password that adds the user to the list of approved users displayed
within the Users tab.
Confirm Password Re-enter (confirm) the password used to add the user to the list of approved users
displayed within the Users tab.
Current Switch Time Displays the read only switch time. This is the time used for expiry data and
time.sers tab.
Start Date & Time Defines the start date and time (in dd:MM:yyyy-hh:mm format) to login guest
users defined with temporary permissions.
Expiry Date & Time Defines the date and time (in dd:MM:yyyy-hh:mm format) to timeout guest users
defined with temporary permissions.
To Next Page
Loading...
Need help?
General
