Enabling Radius And Tacacs+ Authentication Servers - Network Critical SmartNA-X User Manual

10g network access

Hide thumbs Also See for SmartNA-X:

User manual (200 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

Table of Contents

NA-X | M

DMINISTERING

MART

See

page 97

Changing security levels

Locally managed users (user accounts which are not managed via an AAA server) can have their security level

changed by an Administrator, using the set user level command. The system has three security levels:

• Admin – Administrators have full read-write access to all system settings, including the ability to upgrade

firmware and manage user accounts.

• User – Users/Operators have read-write access to ports, modules, maps and filters.

• Audit - Auditors have read-only access to the system.

For example, to give "johnsmith" Admin access to the system, enter this command at the system prompt:

CONTROLLER>set user johnsmith level admin

See

page 98

Removing users

Locally managed users can be removed from the system be an Administrator using the delete user command. For

example, to delete the account for Operator "johnsmith", enter this command at the system prompt:

CONTROLLER>delete user johnsmith

You can use the show users command to output a list of all system users.

CONTROLLER>show users

See

page 95

Enabling RADIUS and TACACS+ authentication servers

The system can be configured to authenticate SmartNA-X accounts using RADIUS or TACACS+ servers to valid

account authentication and privileges. This section explains how to set up RADIUS and TACACS+

authentication servers in SmartNA-X. Refer to your RADIUS/TACACS+ authentication server documentation for

details of how to add user accounts to the server.

Using the web UI to add authentication servers

Click on the main chassis area to access system management settings.

Select the Security tab.

Select RADIUS or TACACS+ as supported by the authentication server. You may also select RADIUS/Local

or TACACS+/Local to fallback to local authentication if access to an authorization server fails.

Add or edit

For RADUIS servers, specify the following configuration options:

• Server address: Specifies the network address of the authentication server.

ANAGING USER ACCOUNTS AND AUTHENTICATION

for information on the set user password command.

for information on the set user level command.

for information on the show users command.

a RADIUS or TACACS+ authentication server.

NA™ 10G N

MART

DRAFT

NA-X)

ETWORK

CCESS

MART

Table of Contents

Show Quick Links

Quick Links:
Managing Smartna-X through the Cli
Connecting to the Management/Network Port
Logging in

Hide quick links:

Table of Contents

Troubleshooting

Need help?

Do you have a question about the SmartNA-X and is the answer not in the manual?

Enabling Radius And Tacacs+ Authentication Servers - Network Critical SmartNA-X User Manual

Enabling RADIUS and TACACS+ authentication servers

Hide quick links:

Troubleshooting

Need help?

Related Manuals for Network Critical SmartNA-X

Table of Contents