Specifications

Administrative AAA Configuration Scenarios

RoamAbout Mobility System Software Configuration Guide 3-11

Administrative AAA Configuration Scenarios

Thefollowingscenariosillustratetypicalconfigurationsforadministrativeandlocal

authentication.Forallscenarios,theadministratorisNatasha withthepasswordm@Jor.(For

RADIUSserverconfigurationdetails,see Chapter 18,ConfiguringCommunicationwith

RADIUS.)

•“LocalAuthentication”onpage 3‐11

•“LocalAuthenticationforConsoleUsersandRADIUSAuthenticationforTelnetUsers

”on

page 3‐11

•“LocalOverrideandBackupLocalAuthentication”onpage 3‐12

•“AuthenticationWhenRADIUSServersDoNotRespond”onpage 3‐13

Local Authentication

ThefirsttimeyouaccessaRoamAbout Switch,itrequiresnoauthentication.(Formore

information,see“First‐TimeConfigurationUsingtheConsole”onpage 3‐5.)Inthisscenario,after

theinitialconfigurationoftheRoamAboutSwitch,Natashaisconnectedthroughtheconsoleand

hasenabledaccess.

Example

Toenablelocalauthenticationforaconsoleuser,youmustconfigurealocalusername.Natasha

typesthefollowingcommandsinthisorder:

RBT-8100# set user natasha password m@Jor

User natasha created

RBT-8100# set authentication console * local

success: change accepted.

RBT-8100# save config

success: configuration saved.

Local Authentication for Console Users and RADIUS Authentication

for Telnet Users

ThisscenarioillustrateshowtoenablelocalauthenticationforconsoleusersandRADIUS

authenticationforTelnetadministrativeusers.Todoso,youconfigureatleastonelocalusername

forconsoleauthenticationandset upaRADIUSserverforTelnetadministrators.

Examples

Natashatypesthefollowingcomm andsinthisorder:

RBT-8100# set user natasha password m@Jor

User natasha created

RBT-8100# set authentication console * local

success: change accepted.

RBT-8100# set radius server r1 address 192.168.253.1 key sunFLOW#$

success: change accepted.