6.
Verify that command authorization is set up for Telnet.
(Netgear Switch) #show authorization methods
Command Authorization Method Lists
-------------------------------------
dfltCmdAuthList
commandList
Line
Command Method List
---------
---------------------
Console
dfltCmdAuthList
Telnet
commandList
SSH
dfltCmdAuthList
Exec Authorization Method Lists
-------------------------------------
dfltExecAuthList
Line
Exec Method List
---------
---------------------
Console
dfltExecAuthList
Telnet
dfltExecAuthList
SSH
dfltExecAuthList
7.
Using Linux on the RADIUS server, configure NETGEAR as the vendor and 4526 as the
vendor-specific value in the dictionary file for FreeRADIUS.
VENDOR
netgear
BEGIN-VENDOR netgear
ATTRIBUTE netgear-cmdAuth-deny
END-VENDOR netgear
8.
Using Linux on the RADIUS server, deny a user named eric access to specific commands in
the user file for FreeRADIUS.
eric
Cleartext-Password := "testing"
Service-Type = Login-User,
netgear-cmdAuth-deny = "deny:poe *;spanningtree *;"
Managed Switches
:
none
:
radius
:
none
4526
1
string
Security Management
358