C
OMMAND
L
INE
I
NTERFACE
3-154
Authentication Commands
You can configure this switch to authenticate users logging into the system
for management access using local, RADIUS, or TACACS authentication
methods. You can also enable port-based authentication for network client
access using IEEE 802.1x.
Remote Authentication Dial-in User Service (RADIUS) and Terminal
Access Controller Access Control System Plus (TACACS+) are logon
authentication protocols that use software running on a central server to
control access to RADIUS-aware or TACACS+-aware devices on the
network. An authentication server contains a database of multiple user
name/password pairs with associated privilege levels for each user or
group that require management access to a switch.
The switch supports IEEE 802.1x (dot1x) port-based access control that
prevents unauthorized access to the network by requiring users to first
submit credentials for authentication. Client authentication is controlled
centrally by an authentication server using EAP (Extensible
Authentication Protocol).
Command Function Mode Page
Authentication Method
authentication login Defines logon authentication method and
precedence
GC 3-157
RADIUS Client
radius-server host Specifies the RADIUS server GC 3-158
radius-server port Sets the RADIUS server network port GC 3-159
radius-server key Sets the RADIUS encryption key GC 3-159
radius-server
retransmit
Sets the number of retries GC 3-160
radius-server timeout Sets the interval between sending
authentication requests
GC 3-161
show radius-server Shows the current RADIUS settings PE 3-161
To Next Page
Loading...
Need help?
General
