Securing Access to Management Functions
In this chapter
Securing access methods
This chapter explains how to secure access to management functions on the device.
NOTE
RADIUS Challenge is supported for 802.1x authentication but not for login authentication. Also,
multiple challenges are supported for TACACS+ login authentication.
The following table lists the management access methods available on the device, how they are
secured by default, and the ways in which they can be secured.
TABLE 33
Access method
Serial access to the CLI
Access to the Privileged EXEC
and CONFIG levels of the CLI
BigIron RX Series Configuration Guide
53-1001810-01
•
•
•
Setting passwords . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 71
•
•
•
•
•
Ways to secure management access to the device
How the access method is
secured by default
Not secured
Not secured
Ways to secure the access method
Establish passwords for management
privilege levels
Establish a password for Telnet access
to the CLI
Establish passwords for management
privilege levels
Set up local user accounts
Configure TACACS/TACACS+ security
Configure RADIUS security
Chapter
4
See page
page 72
page 71
page 72
page 75
page 80
page 96
61