CLI Reference Guide
280 CHAPTER 7: CONFIGURING AUTHENTICATION, AUTHORIZATION, AND ACCOUNTING PARAMETERS
Configuring and
Managing Access
Rules for
Administrative
Users
The 3Com Mobility System supports two types of access rules for
administrative users, based on how the administrator accesses the WX
switch:
Administrative access
Users with this access rule connect to the WX switch using Telnet or
Secure Shell (SSH).
By default, if no authentication has been set for administrative users,
the local WX user database authenticates all incoming Telnet or SSH
sessions.
After you have configured authentication for administrative users,
only usernames matching the user glob specified for authentication
can successfully access the WX using Telnet or SSH. Any other
username-and-password combinations fail authentication.
Console access
Users with this access rule connect to the WX switch using a console
cable that is plugged directly to the WX switch.
By default, if no authentication has been set for console users, any
username-and-password combination is able to log in using the
console. (In the CLI, entering a carriage return for the username and
password also allows access through the console.)
After you have configured authentication for console users, only
usernames matching the user glob specified for authentication can
successfully access the console. Any other username-and-password
combinations fail authentication.
vlan-name
(network access
mode only)
Virtual LAN (VLAN)
assignment.
On some RADIUS
servers, you might
need to use the
standard RADIUS
attribute
Tunnel-Pvt-Group-ID,
instead of
VLAN-Name.
Name of a VLAN that you want the
user to use. The VLAN must be
configured on a WX switch within the
Mobility Domain to which this WX
switch belongs.
Table 24 Authentication Attributes for Local Users (continued)
Attribute Description Valid Value(s)