General Radius Setup Procedure - HP 3500yl Series Access Security Manual
Switch software
Hide thumbs
Also See for 3500yl Series:
- Release notes (219 pages) ,
- Specifications (16 pages) ,
- Features (6 pages)
Table of Contents
Advertisement
RADIUS Authentication, Authorization, and Accounting
General RADIUS Setup Procedure
Table 6-1.
Preparation for Configuring RADIUS on the Switch
• Determine the access methods (console, Telnet, Port-Access (802.1X), WebAgent and/or SSH) for which you want
RADIUS as the primary authentication method. Consider both Operator (login) and Manager (enable) levels, as well
as which secondary authentication methods to use (local or none) if the RADIUS authentication fails or does not
respond.
HP Switch(config)# show authentication
Status and Counters - Authentication Information
Login Attempts : 3
Respect Privilege : Disabled
Access Task | Primary
----------- + ---------- ------------ ----------
Console
Telnet
Port-Access | Local
Webui
SSH
Web-Auth
MAC-Auth
SNMP
Access Task | Primary
----------- + ---------- ------------ ----------
Console
Telnet
Webui
SSH
Figure 6-1. Example of Possible RADIUS Access Assignments
6-6
General RADIUS Setup Procedure
Preparation:
1.
Configure one to fifteen RADIUS servers to support the switch. Refer to
the documentation provided with the RADIUS server application.
2.
Before configuring the switch, collect the information outlined below.
| Login
Login
Server Group Secondary
| Local
| Local
| Local
| Local
| ChapRadius radius
| ChapRadius radius
| Local
| Enable
Enable
Server Group Secondary
| Local
| Local
| Local
| Local
Login
Local
None
None
None
None
None
None
None
Enable
None
None
None
None
Note: The WebAgent
access task shown in this
figure is available only on
the switches covered in
this guide.
Console access requires
Local as secondary
method to prevent lockout
if the primary RADIUS
access fails due to loss of
RADIUS server access or
other problems with the
server.
Hide quick links:
Advertisement
Chapters
Table of Contents
