Authenticating Users; Radius Client; Radius Commands - Extreme Networks Summit 300-48 Software User's Manual

Extreme summit 300-48: software user guide

Hide thumbs Also See for Summit 300-48:

Software user's manual (198 pages)

Hardware installation manual (394 pages)

Hardware installation manual (112 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

Table of Contents

Authenticating Users

ExtremeWare provides a Radius client to authenticate switch admin users who login to the switch:

RADIUS Client

Remote Authentication Dial In User Service (RADIUS, RFC 2138) is a mechanism for authenticating and

centrally administrating access to network nodes. The ExtremeWare RADIUS client implementation

allows authentication for Telnet or console access to the switch.

You can define a primary and secondary RADIUS server for the switch to contact. When a user

attempts to login using Telnet, http, or the console, the request is relayed to the primary RADIUS server,

and then to the secondary RADIUS server, if the primary does not respond. If the RADIUS client is

enabled, but access to the RADIUS primary an secondary server fails, the switch uses its local database

for authentication.

The privileges assigned to the user (admin versus nonadmin) at the RADIUS server take precedence

over the configuration in the local switch database.

Configuring RADIUS Client

You can define primary and secondary server communication information, and for each RADIUS server,

the RADIUS port number to use when talking to the RADIUS server. The default port value is 1645. The

client IP address is the IP address used by the RADIUS server for communicating back to the switch.

RADIUS commands are described in Table 11.

Table 11: RADIUS Commands

Command

enable radius

disable radius

enable radius network-access

disable radius network-access

enable radius switch-access

disable radius switch-access

Summit 300-48 Switch Software User Guide

Description

Enables RADIUS globally for wired and wireless access.

Disables RADIUS globally for wired and wireless access.

Enables RADIUS for wireless access only.

Disables RADIUS for wireless access only.

Enables RADIUS for switch access only. In order to obtain wireless

access as well, the enable radius network-access command

must be used.

Disables RADIUS for switch access only.

Authenticating Users

Table of Contents

Authenticating Users; Radius Client; Radius Commands - Extreme Networks Summit 300-48 Software User's Manual

Authenticating Users

RADIUS Client

Related Manuals for Extreme Networks Summit 300-48

Related Content for Extreme Networks Summit 300-48

Table of Contents