Security
RADIUS
Cisco Small Business SG200 Series 8-port Smart Switches Administration Guide
This chapter describes the security features for the port, user, and server.
It includes the following topics:
•
RADIUS
•
Password Strength
•
Management Access Profile Rules
•
Authentication Methods
•
Storm Control
•
Port Security
•
802.1X
The switch supports Remote Authorization Dial-In User Service (RADIUS) client
functionality. RADIUS has become the protocol of choice by administrators of
large accessible networks for authenticating users prior to access. To authenticate
users in a secure manner, a RADIUS client and RADIUS server are configured with
the same shared password or secret. This secret is used to generate one-way
encrypted authenticators that are present in all RADIUS packets. Without
knowledge of the secret, the possibility of a malicious user correctly spoofing
packets is sufficiently reduced.
The RADIUS client on the switch is used for switch management access
authentication and IEEE 802. 1 X ("dot1X") port access control (see
Access Profile Rules
You can use the RADIUS page to configure global RADIUS settings and add
RADIUS servers.
and 802.1X).
11
Management
134