25 Managing Authentication
This chapter describes authentication servers and how they are used with the switch. The types of servers
described include Remote Authentication Dial-In User Service (RADIUS), Lightweight Directory Access
Protocol (LDAP), Terminal Access Controller Access Control System (TACACS+), and SecurID's ACE/
Server.
In This Chapter
The chapter includes some information about attributes that must be configured on the servers, but it
primarily addresses configuring the switch through the Command Line Interface (CLI) to communicate
with the servers to retrieve authentication information about users.
Configuration procedures described include:
•
Configuring an ACE/Server. This procedure is described in
•
Configuring a RADIUS Server. This procedure is described in
•
Configuring a TACACS+ Server. This procedure is described in
•
Configuring an LDAP Server. This procedure is described in
For information about using servers for authenticating users to manage the switch, see the "Switch Secu-
rity" chapter in the OmniSwitch 6800/6850/9000 Switch Management Guide.
For information about using servers to retrieve authentication information for Layer 2 Authentication users
(authenticated VLANs), see
OmniSwitch 6800/6850/9000 Network Configuration Guide
Chapter 26, "Configuring Authenticated VLANs."
Servers
"ACE/Server" on page
"RADIUS Servers" on page
"TACACS+ Server" on page
"LDAP Servers" on page
March 2008
25-8.
25-9.
25-15.
25-17.
page 25-1