Filter
Top Products
Configuring Web-based AAA for administrative and local access 81
Nortel WLAN—Security Switch 2300 Series Configuration Guide
Local override and backup local authentication
This scenario illustrates how to enable local override authentication for console users. Local override means that WSS
Software attempts authentication first via the local database. If it finds no match for the user in the local database, WSS
Software then tries a RADIUS server—in this case, server r1 in server group sg1. Natasha types the following
commands in this order:
WSS# set user natasha password m@Jor
User natasha created
WSS# set radius server r1 address 192.168.253.1 key sunFLOW#$
success: change accepted.
WSS# set server group sg1 members r1
success: change accepted.
WSS# set authentication console * local sg1
success: change accepted.
WSS# save config
success: configuration saved.
Natasha also enables backup RADIUS authentication for Telnet administrative users. If the RADIUS server does not
respond, the user is authenticated by the local database in the WSS. Natasha types the following commands:
WSS# set authentication admin * sg1 local
success: change accepted.
WSS# save config
success: configuration saved.
The order in which Natasha enters authentication methods in the set authentication command determines the method
WSS Software attempts first. The local database is the first method attempted for console users and the last method
attempted for Telnet administrators.