Filter
Top Products
62 CHAPTER 3: CONFIGURING AAA FOR ADMINISTRATIVE AND LOCAL ACCESS
Administrative AAA
Configuration
Scenarios
The following scenarios illustrate typical configurations for administrative
and local authentication. For all scenarios, the administrator is Natasha
with the password m@Jor. (For RADIUS server configuration details, see
Chapter 22, “Configuring Communication with RADIUS,” on page 519.)
“Local Authentication” on page 62
“Local Authentication for Console Users and RADIUS Authentication
for Telnet Users” on page 62
“Local Override and Backup Local Authentication” on page 64
“Authentication When RADIUS Servers Do Not Respond” on page 63
Local Authentication The first time you access a WX switch, it requires no authentication. (For
more information, see “First-Time Configuration via the Console” on
page 55.) In this scenario, after the initial configuration of the WX switch,
Natasha is connected through the console and has enabled access.
To enable local authentication for a console user, you must configure a
local username. Natasha types the following commands in this order:
WX1200# set user natasha password m@Jor
User natasha created
WX1200# set authentication console * local
success: change accepted.
WX1200# save config
success: configuration saved.
Local Authentication
for Console Users and
RADIUS
Authentication for
Telnet Users
This scenario illustrates how to enable local authentication for console
users and RADIUS authentication for Telnet administrative users. To do so,
you configure at least one local username for console authentication and
set up a RADIUS server for Telnet administrators. Natasha types the
following commands in this order:
WX1200# set user natasha password m@Jor
User natasha created
WX1200# set authentication console * local
success: change accepted.
WX1200# set radius server r1 address 192.168.253.1 key sunFLOW#$
success: change accepted.