Configuring Device Security
Configuring Management Security
Page 35
– Local — Authenticates the user at the device level. The device checks the user name and password for
authentication.
– RADIUS — Authenticates the user at the RADIUS server. For more information, see Defining RADIUS
Server Settings.
– TACACS+ — Authenticates the user at the TACACS+ server. For more information, see Defining
TACACS+ Host Settings.
– Local, RADIUS — Indicates that authentication first occurs locally. If authentication cannot be verified
locally, the RADIUS server authenticates the management method. If the RADIUS server cannot
authenticate the management method, the session is blocked.
– RADIUS, Local — Indicates that authentication first occurs at the RADIUS server. If authentication
cannot be verified at the RADIUS server, the session is authenticated locally. If the session cannot be
authenticated locally, the session is blocked.
– Local, RADIUS, None — Indicates that authentication first occurs locally. If authentication cannot be
verified locally, the RADIUS server authenticates the management method. If the RADIUS server cannot
authenticate the management method, the session is permitted.
– RADIUS, Local, None — Indicates that Authentication first occurs at the RADIUS server. If authentication
cannot be verified at the RADIUS server, the session is authenticated locally. If the session cannot be
authenticated locally, the session is permitted.
– Local, TACACS+ — Indicates that Authentication first occurs locally. If authentication cannot be verified
locally, the TACACS+ server authenticates the management method. If the TACACS+ server cannot
authenticate the management method, the session is blocked.
– TACACS+, Local — Indicates that authentication first occurs at the TACACS+ server. If authentication
cannot be verified at the TACACS+ server, the session is authenticated locally. If the session cannot be
authenticated locally, the session is blocked.
– Local, TACACS+, None — Indicates that authentication first occurs locally. If authentication cannot be
verified locally, the TACACS+ server authenticates the management method. If the TACACS+ server
cannot authenticate the management method, the session is permitted.
– TACACS+, Local, None — Indicates that authentication first occurs at the TACACS+ server. If
authentication cannot be verified at the TACACS+ server, the session is authenticated locally. If the
session cannot be authenticated locally, the session is permitted.
2. Click Add. The Add Authentication Profile Page opens: