ZIV SWT - Security Configuration

To Next Page
To Previous Page
SWT 
GIGABIT/FAST ETHERNET SWITCH TYPE SWT  81/137 
USER GUIDE - M0SWTA1903Iv09 -  V09  March 2019 
•  Guest  Privilege  Level.  It  sets  the  privilege  level  (0  to  15)  of  the  guest  profile 
(guest). If the privilege level received for the calling user in the affirmative answer of 
the RADIUS server is equal to or more than this parameter, and at the same time 
lower than the Admin level, the user will get guest access (read only). 
•  Admin Privilege Level. It sets the privilege level (0 to 15) of the administrator profile 
(admin). If the privilege level received for the calling user in the affirmative answer of 
the  RADIUS  server  is  equal  to  or  more  than  this  parameter,  the  user  will  get 
administrator access (read and write access). 
The parameters associated with each access option (console, web, telnet and SSH) are 
the following: 
•  Authentication  method.  This  sets  whether  the  user  validation  must  be  made 
locally or by consulting the configured tacacsplus or radius servers. 
•  Fallback to local access. When this option is enabled, if there is no accessibility 
to the configured  TACACS+  or  RADIUS  servers,  users  are  permitted to validate 
themselves with local user names. If the option is disabled, and the TACACS+ or 
RADIUS  servers  are  not  accessible,  users  will  not  be  granted  access.  Access 
through the console has this option permanently enabled, for which reason it is not 
configurable. 
5.15  SECURITY CONFIGURATION 
This menu allows traffic restrictions to be imposed, depending on the MAC addresses of 
the  clients.  The  equipment  admits  two  modes  for  verifying  the  admitted  client  MAC 
addresses: maclist or 802.1x. 
When operating with lists, maclist, the equipment will only send traffic if the MAC address is 
included in the authorized address list. Activation of the restriction and the list is configured 
separately for each port. 
For  the  802.1x  mode,  the  authentication  of  MAC  addresses  is  done  by  consulting  a 
RADIUS server. RADIUS (acronym for Remote Authentication Dial-In User Server) is a 
remote  authentication  protocol  used  to  manage  access  to  servers  and  communication 
devices; it provides separate authentication, authorization and registration services. 
Main Page
ZIV SWT - Security Configuration

Table of Contents

Related product manuals
