Table of Contents
Advertisement
D-Link DGS-1100-10/ME User Manual
RADIUS – Enter this parameter if the server host utilizes the RADIUS protocol.
Authentication Port (1 - 65535): Enter a number between 1 and 65535 to define the virtual port number of
the authentication protocol on a server host. The default port number is 1812 but the user may set a unique
port number for higher security.
Key
(Max: 254 characters)
alphanumeric string up to 254 characters.
Timeout (1 - 255): Enter the time in seconds the Switch will wait for the server host to reply to an
authentication request. The default value is 5 seconds.
Retransmit (1 - 255): Enter the value in the retransmit field to change how many times the device will resend
an authentication request when the TACACS server does not respond. The default value is 2.
Click Apply to add a new Authentication Server Host.
Security > Access Authentication Control > Login Method Lists
From this page you can configure a user-defined or default Login Method List of authentication techniques
for users logging on to the Switch. Successful login using any of these techniques will give the user a "User"
privilege only. To upgrade his or her status to the administrator level, the user must use the Enable Admin
window, in which the user must enter a previously configured password, set by the administrator.
The Switch contains one Method List that is set and cannot be removed, yet can be modified. To delete a
Login Method List defined by the user, click Delete. To modify the Login Method List, click Edit.
To define a Login Method List, set the following parameters and click Apply:
Method List Name: Enter a method list name defined by the user of up to 15 characters.
Priority 1, 2, 3, 4: You may add one or a combination of up to four of the following authentication methods to
this method list:
none – Selecting this parameter will require authentication to access the Switch.
local – Selecting this parameter will require the user to be authenticated using the local user account
database on the Switch.
radius – Selecting this parameter will require the user to be authenticated using the RADIUS
protocol from a remote RADIUS server.
Security > Access Authentication Control > Enable Method Lists
The Enable Method Lists page is used to set up Method Lists to promote users with user level privileges to
Administrator (Admin) level privileges using authentication methods on the Switch. Once a user acquires
normal user level privileges on the Switch, he or she must be authenticated by a method on the Switch to
gain administrator privileges on the Switch, which is defined by the Administrator. A maximum of eight
Enable Method Lists can be implemented on the Switch, one of which is a default Enable Method List. This
default Enable Method List cannot be deleted but can be configured.
To delete an Enable Method List, click to Delete the entry desired to be deleted. To modify an Enable
Method List, click Edit to make any changes and click Apply.
: Authentication key to be shared with configured RADIUS servers. Specify an
NOTE: More than one authentication protocol can
be run on the same physical server host.
Figure 4.106 – Security > Access Authentication control > Login Method Lists
6
6
5
5
Hide quick links:
Advertisement
Table of Contents
