Security Configuration
Overview
N o t e
C a u t i o n
5-2
Overview
The 8100fl switch provides security features that help control access and filter
traffic. Access to the switch can be controlled by:
■
Terminal line password authentication
Secure shell protocol (version 1 and 2, server and client)
■
■
RADIUS
■
TACACS+
Local user names and passwords
■
The 8100fl switch requires you to turn on access features that affect security.
By default, these features are turned off.
Configuring Passwords
The switch provides password authentication for accessing the User and
Privileged Exec modes. If TACACS+ or RADIUS is not enabled on the switch,
only switch-level password authentication is performed (if configured).
Preventing Lock Outs
To avoid being locked out of the CLI when implementing password changes,
note the following precautions:
Verify parameter values by using the show running-config command before
■
saving security commands to the startup configuration file on the switch.
Any misconfiguration can effectively lock you out of the CLI.
■
If you forget your line-level passwords, you can log on using the console
and enter new passwords. Once enter the new passwords to the running
configuration, other users who access these lines can use the new
passwords. To make the changes permanent, save the running
configuration to the startup configuration.