Table of Contents
Advertisement
User authentication
(config)> add auth method end local
(config)>
5. Create the user. In this example, the user is being created with the username adminuser:
(config)> add auth user adminuser
(config auth user adminuser)>
6. Assign a password to the user:
(config auth user adminuser)> password pwd
(config auth user adminuser)>
7. Assign the user to the admin group:
(config auth user adminuser)> add group end admin
(config auth user adminuser)>
8. Save the configuration and apply the change:
(config auth user adminuser)> save
Configuration saved.
>
9. Type exit to exit the Admin CLI.
Depending on your device configuration, you may be presented with an Access selection
menu. Type quit to disconnect from the device.
Example 2: RADIUS, TACACS+, and local authentication for one user
Goal: To create a user with administrator rights who is authenticated by using all three authentication
methods.
In this example, when the user attempts to log in to the Connect IT 16/48 device, user authentication
will occur in the following order:
1. The user is authenticated by the RADIUS server. If the RADIUS server is unavailable,
2. The user is authenticated by the TACACS+ server. If both the RADIUS and TACACS+ servers are
unavailable,
3. The user is authenticated by the Connect IT 16/48 device using local authentication.
This example uses a FreeRadius 3.0 server running on ubuntu, and a TACACS+ server running on
ubuntu. Server configuration may vary depending on the platforms or type of servers used in your
environment.
Digi Connect IT® 16/48 User Guide
Example user configuration
542
Advertisement
Table of Contents
