Filter
Top Products
xStack DES-3800 Series Layer 3 Stackable Fast Ethernet Managed Switch
261
Three Level User Accounts
When the user logins to the device successfully through TACACS/XTACACS/TACACS+ server or none method, “User”
privilege level is the only level assigned. If the user wants to get “Admin” privilege level, the user must use the Enable Admin
window to promote his privilege level. However when the user logins to the device successfully through the RADIUS server or
through the local method, three kinds of privilege levels can be assigned to the user and the user can not use the Enable Admin
window to promote to “Admin” privilege level.
To assign user privilege by RADIUS server, proper parameters should be configured on the RADIUS Server. Below are the
parameters of a user account:
RADIUS Server
Attribute
Description Usage
Username(1) Name of the user
account
Required
Password(2) Password of the user
account
Required
Vendor-Specific(26) Used to assign the
privilege of the user
account
Required
The parameters of the Vendor-Specific attribute
Vendor-Specific attribute Description Value Usage
Vendor-ID To define the vendor 171 (DLINK) Required
Vendor-Type The definition of the
this attribute
1 (for user privilege) Required
Attribute-Specific filed Used to assign the
privilege of the user
account
3 (User privilege)
4 (Operator privilege)
5 (Admin privilege)
Required
If the user has configured the user privilege attribute of the RADIUS server (for example, User A has “Admin” privilege) and the
login is successful, the device will assign the correct privilege level (according to the RADIUS server) to the user. However if the
user does not configure the user privilege attribute and logins successfully, the device will assign “User” privilege to this user.