Specifications

ManualsBrandsBlade Network Technologies ManualsComputer AccessoriesG8000

151

152

153

154

155

156

157

158

159

160

Chapter 4. Initial configuration: IBM System Networking 10Gb Ethernet switches 139

To confirm that the creation of the user is done correctly, run show access (Example 4-35).

Example 4-35 Adding a user

RS8264# show access user uid 1

You can also enable or disable one user (Example 4-36). A user account must be enabled

before the switch recognizes and permits login under the account. After it is enabled, the

switch requires any user to enter both a user name and password.

Example 4-36 Enable or disable a user

RS8264(config)# [no] access user 1 enable

You can list the existing users in the switch by running show access user (Example 4-37).

Example 4-37 Showing the users of the system

RS8264# show access user

Usernames:

user - Enabled - offline

oper - Disabled - offline

admin - Always Enabled - online 1 session

Current User ID table:

1: name jane , ena, cos user , password valid, online 1 session

2: name john , ena, cos user , password valid, online 2 sessions

IBM Networking OS also supports other authentication systems, such as RADIUS,

TACACS+, and LDAP. With these security solutions, the user management is done external

to the switch, so the only thing that must be done is to configure the switch to access the

external security server.

RADIUS

Use the following procedure to configure RADIUS authentication on your switch.

Configure the IPv4 addresses of the Primary and Secondary RADIUS servers, and enable

RADIUS authentication (Example 4-38). In our case, the RADIUS server is in the IP address

10.10.1.1 and the secondary host in the 10.10.1.2.

Example 4-38 RADIUS authentication

RS8264(config)# radius-server primary-host 10.10.1.1

RS8264(config)# radius-server secondary-host 10.10.1.2

RS8264(config)# radius-server enable

Operator The Operator manages all functions of the switch.

The Operator can reset ports, except for the

management port.

operator

Administrator The super-user Administrator has complete access

to all commands, information, and configuration

commands on the switch, including the ability to

change both the user and administrator passwords.

admin

User Account Description and tasks performed Default password