Manualshelf

Network Router User Manual

ManualsBrandsNortel Networks ManualsNetwork RouterWEB OS 212777
101102103104105106107108109110
Web OS 10.0 Application Guide
106
Chapter 5: Secure Switch Management
212777-A, February 2002
When the user logs in, the switch authenticates his/her level of access by sending the RADIUS
access request, that is, the client authentication request, to the RADIUS authentication server.
If the remote user is successfully authenticated by the authentication server, the switch will
verify the privileges of the remote user and authorize the appropriate access. When both the
primary and secondary authentication servers are not reachable, the administrator has an
option to allow backdoor access via the console only or console and telnet access. The default
is disable for telnet access and enable for console access.
All user privileges, other than those assigned to the Administrator, have to be defined in the
RADIUS dictionary. Radius attribute 6 which is built into all Radius servers defines the admin-
istrator. The file name of the dictionary is RADIUS vendor-dependent. The following user
privileges are Web OS-proprietary definitions.
Table 5-2 Web OS Alteon Levels
User Name/Access User-Service-Type Value
User Vendor-supplied 255
SLB Operator Vendor-supplied 254
Layer 4 Operator Vendor-supplied 253
Operator Vendor-supplied 252
SLB Administrator Vendor-supplied 251
Layer 4 Administrator Vendor-supplied 250