Login Mode Radius; Automatic Session Termination - ABB EDS500 Series Function Manual

Ethernet & dsl switches

Hide thumbs Also See for EDS500 Series:

Manual (46 pages)

Operating instruction (7 pages)

Operating instructions manual (6 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

page of 156

/ 156
Contents
Table of Contents
Bookmarks

Table of Contents

Functions

Danger of an unreachable system due to different character encoding.

When accessing the system the code page used by the accessing program has to be ISO

8859-15 (Latin-9). Due to different character encoding of diacritical characters on login,

different code pages may lead to falsely interpreted and, hence, invalid passwords. The

system may become unreachable.

Commands to set the login mode and passwords

< s e t s y s t e m l o g i n m o d e p a s s w o r d >

< s e t l o g i n p a s s { . . . } >

< s e t n o l o g i n p a s s >

< c l e a r l o g i n p a s s >

< s e t e n a b l e p a s s { . . . } >

< s e t n o e n a b l e p a s s >

< c l e a r e n a b l e p a s s >

2.3.2

Login Mode Radius

As an alternative to the loginmode password that uses a fixed password for authentication,

a login is also possible with the help of a (remote) authentication server. User name and

password combinations can be verified by a RADIUS server.

To use the login mode radius on a EDS500 device, the RADIUS server that can be reached via

the network has to be configured first, refer to Chapter 2.23, "RADIUS". If no RADIUS server

is configured the login mode password stays active as a fall-back. After successful login with

RADIUS (e.g. via Telnet or SSH) the user is in view mode. If the web interface is used with

RADIUS, the user is in operation mode configuration after authentication.

Commands to set login mode radius

< s e t s y s t e m l o g i n m o d e r a d i u s >

Serial connections to the command line interface (CLI) via serial connections are not

authenticated by RADIUS but always with the login and enable password (refer to

Chapter 2.3.1, "Login Mode Password").

2.3.3

Automatic Session Termination

To avoid that authenticated connections stay open due to a forgotten logout there is an

automatic function for logout and disable on EDS500 managed switches.

A timeout can be set for the access to the management console via serial connections, Telnet

connections, SSH connections and the Web-interface.

A serial connection to a management console gets only terminated if a login password is set

and the value for idle-logout timeout does not equal 0.

The default value for the automatic termination of the operation mode configuration after

inactivity is 600 seconds.

The default value for the automatic termination of the view mode is 1200 seconds.

1KGT151021 V000 1

A D V I C E

User Authentication

Table of Contents

Show Quick Links

Quick Links:
Configuration Via the Serial Interface

Hide quick links:

Table of Contents

Login Mode Radius; Automatic Session Termination - ABB EDS500 Series Function Manual

Login Mode Radius

Automatic Session Termination

Hide quick links:

Related Manuals for ABB EDS500 Series

Related Content for ABB EDS500 Series

Table of Contents