Configuring Switch-Based Authentication
How to Configure Switch-Based Authentication
Command
6.
username name [privilege level]
{password encryption-type
password}
7.
end
8.
show running-config
9.
copy running-config
startup-config
Configuring Secure Shell
Setting Up the Switch to Run SSH
Task
1.
Download the cryptographic software image from
Cisco.com.
2.
Configure a hostname and IP domain name for the switch.
3.
Generate an RSA key pair for the switch, which automatically
enables SSH.
4.
Configure user authentication for local or remote access.
Configuring the SSH Server
Command
1.
configure terminal
2.
hostname hostname
3.
ip domain-name domain_name
Purpose
Enters the local database, and establishes a username-based authentication
system.
Repeat this command for each user.
name—Specifies the user ID as one word. Spaces and quotation marks
are not allowed.
(Optional) level—Specifies the privilege level the user has after gaining
access. The range is 0 to 15. Level 15 gives privileged EXEC mode
access. Level 0 gives user EXEC mode access.
encryption-type—Enters 0 to specify that an unencrypted password
follows. Enter 7 to specify that a hidden password follows.
password—Specifies the password the user must enter to gain access to
the switch. The password must be from 1 to 25 characters, can contain
embedded spaces, and must be the last option specified in the
username command.
Returns to privileged EXEC mode.
Verifies your entries.
(Optional) Saves your entries in the configuration file.
Purpose
(Required) For more information, see the notes for
this release.
Follow this procedure only if you are configuring the
switch as an SSH server.
Follow this procedure only if you are configuring the
switch as an SSH server.
(Required) For more information, see
the Switch for Local Authentication and
Authorization, page
Purpose
Enters global configuration mode.
Configures a hostname for your switch.
Configures a host domain for your switch.
179
Configuring
178.