3Com WX2200 3CRWX220095A Switch User Manual


 
Administrative AAA Configuration Scenarios 63
Natasha also adds the RADIUS server (r1) to the RADIUS server group sg1,
and configures Telnet administrative users for authentication through the
group. She types the following commands in this order:
WX1200# set server group sg1 members r1
success: change accepted.
WX1200# set user admin attr service-type 6
success: change accepted.
WX1200# set authentication admin * sg1
success: change accepted.
WX1200# save config
success: configuration saved.
If the service-type is not set to 6 (Administrative), the user will not be able
to enter “enable” mode commands.
Authentication When
RADIUS Servers Do
Not Respond
This scenario illustrates how to enable RADIUS authentication for both
console and administrative users, but to unconditionally allow access for
administrative and console users if the RADIUS server (in this case, server
r1 in server group sg1) does not respond. To configure unconditional
authentication, Natasha sets the authentication method to none. She
types the following commands in this order:
WX1200# set user natasha password m@Jor
User natasha created
WX1200# set radius server r1 address 192.168.253.1 key
sunFLOW#$
success: change accepted.
WX1200# set server group sg1 members r1
success: change accepted.
WX1200# set authentication console * sg1 none
success: change accepted.
WX1200# set user admin attr service-type 6
success: change accepted.
WX1200# set authentication admin * sg1 none
success: change accepted.
WX1200# save config
success: configuration saved.