Local Enable Password Settings - D-Link DGS-3700-12 User Manual

Local Enable Password Settings

This window will configure the locally enabled password for the Enable Admin command. When a user chooses the
"local_enable" method to promote user level privileges to administrator privileges, he or she will be prompted to enter
the password configured here that is locally set on the Switch.
To view this window, click Security > Access Authentication Control > Local Enable Password Settings, as
shown below:
To set the Local Enable Password, set the following parameters and click Apply.
Parameter
Old Local Enable
Password
New Local Enable
Password
Confirm Local Enable
Password
If the user has configured the user privilege attribute of the RADIUS server (for example, User A has "Admin"
privilege) and the login is successful, the device will assign the correct privilege level (according to the RADIUS
server) to the user. However, if the user does not configure the user privilege attribute and logs in successfully, the
device will assign "User" privilege to this user.
SSL Settings
Secure Sockets Layer or SSL is a security feature that will provide a secure communication path between a host and
client through the use of authentication, digital signatures and encryption. These security functions are implemented
through the use of a ciphersuite, which is a security string that determines the exact cryptographic parameters,
specific encryption algorithms and key sizes to be used for an authentication session and consists of three levels:
Key Exchange: The first part of the cyphersuite string specifies the public key algorithm to be used. This switch
utilizes the Rivest Shamir Adleman (RSA) public key algorithm and the Digital Signature Algorithm (DSA),
specified here as the DHE DSS Diffie-Hellman (DHE) public key algorithm. This is the first authentication
DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet User Manual
Password must set the local enable password.
none – Adding this parameter will require no authentication to access the Switch.
radius – Adding this parameter will require the user to be authenticated using the RADIUS
protocol from a remote RADIUS server.
tacacs – Adding this parameter will require the user to be authenticated using the TACACS
protocol from a remote TACACS server.
xtacacs – Adding this parameter will require the user to be authenticated using the
XTACACS protocol from a remote XTACACS server.
tacacs+ – Adding this parameter will require the user to be authenticated using the TACACS
protocol from a remote TACACS server.
Figure 8- 53 Local Enable Password Settings window
Description
If a password was previously configured for this entry, enter it here in order to change it to
a new password
Enter the new password that you wish to set on the Switch to authenticate users
attempting to access Administrator Level privileges on the Switch. The user may set a
password of up to 15 characters.
Confirm the new password entered above. Entering a different password here from the
one set in the New Local Enabled field will result in a fail message.
240