Filter
Top Products
80 Configuring Web-based AAA for administrative and local access
NN47250-500 (320657-F Version 02.01)
Local authentication
The first time you access a WSS, it requires no authentication. (For more information, see “First-time configuration via
the console” (page 72).) In this scenario, after the initial configuration of the WSS, Natasha is connected through the
console and has enabled access.
To enable local authentication for a console user, you must configure a local username. Natasha types the following
commands in this order:
WSS# set user natasha password m@Jor
User natasha created
WSS# set authentication console * local
success: change accepted.
WSS# save config
success: configuration saved.
Local authentication for console users and RADIUS authentication for
Telnet users
This scenario illustrates how to enable local authentication for console users and RADIUS authentication for Telnet
administrative users. To do so, you configure at least one local username for console authentication and set up a
RADIUS server for Telnet administrators. Natasha types the following commands in this order:
WSS# set user natasha password m@Jor
User natasha created
WSS# set authentication console * local
success: change accepted.
WSS# set radius server r1 address 192.168.253.1 key sunFLOW#$
success: change accepted.
Natasha also adds the RADIUS server (r1) to the RADIUS server group sg1, and configures Telnet administrative users
for authentication through the group. She types the following commands in this order:
WSS# set server group sg1 members r1
success: change accepted.
WSS# set authentication admin * sg1
success: change accepted.
WSS# save config
success: configuration saved.