User Manual
Table Of Contents
- 1. INTRODUCTION
- 2. INSTALLATION
- 3. SWITCH MANAGEMENT
- 4. WEB CONFIGURATION
- 4.1 Main Web Page
- 4.2 System
- 4.3 Port Management
- 4.4 Link Aggregation
- 4.5 VLAN
- 4.5.1 VLAN Overview
- 4.5.2 IEEE 802.1Q VLAN
- 4.5.3 Management VLAN
- 4.5.4 Create VLAN
- 4.5.5 Interface Settings
- 4.5.6 Port to VLAN
- 4.5.7 Port VLAN Membership
- 4.5.8 Protocol VLAN Group Setting
- 4.5.9 Protocol VLAN Port Setting
- 4.5.10 GVRP Setting
- 4.5.11 GVRP Port Setting
- 4.5.12 GVRP VLAN
- 4.5.13 GVRP Statistics
- 4.5.14 VLAN setting example:
- 4.6 Spanning Tree Protocol
- 4.7 Multicast
- 4.8 Quality of Service
- 4.9 Security
- 4.10 ACL
- 4.11 MAC Address Table
- 4.12 LLDP
- 4.13 Diagnostics
- 4.14 RMON
- 4.15 Power over Ethernet
- 4.16 Maintenance
- 5. SWITCH OPERATION
- 6. TROUBLESHOOTING
- APPENDIX A
- EC Declaration of Conformity
User’s Manual of LRP-822CS/LRP-1622CS
231
Click
Modify
to edit login authentication list parameter
Click
to delete login authentication list entry
4.9.4 AAA
Authentication, authorization, and accounting (AAA) provides a framework for configuring access control on the LRP
ecurity fu
Authentication — Identifies users that request access to the network.
Authorization — Determines if users can access specific services.
Accounting — Provides reports, auditing, and billing for services that users have accessed on the network.
uire the use of configured RADIUS or TACACS+ servers in the network. The security servers can be
defined a a method for controlling user access to specified services. For example,
when the switch attempts to authenticate a user, a request is sent to the first server in the defined group, if there is no response
the second server will be tried, and so on. If at any point a pass or fail is returned, the process stops.
The LRP Managed Switch supports the following AAA features:
Accounting for IEEE 802.1X authenticated users that access the network through the LRP Managed Switch.
Accounting for users that access management interfaces on the LRP Managed Switch through the console and Telnet.
Accounting for commands that users enter at specific CLI privilege levels. Authorization of users that access
management interfaces on the LRP Managed Switch through the console and Telnet.
To configure AAA on the LRP Man
1. Configure RADIUS and TACACS+ server access parameters. See “Configuring Local/Remote Logon
Authentication”.
2. ADIUS and TACACS s to support the accounting and authorization of services.
3. Define a method name for each service to which you want to apply accounting or authorization and specify the
or TACACS+ server g ethod names to port or line interfaces.
Managed Switch. The three s nctions can be summarized as follows:
The AAA functions req
s sequential groups that are then applied as
aged Switch, you need to follow this general process:
Define R + server group
RADIUS roups to use. Apply the m
This guide assu CS+ servers have already been configured to
support AAA. The configuration of RADIUS and TACACS+ server software is beyond the
scope of this gu ovided with the RADIUS or TACACS+
server software
mes that RADIUS and TACA
ide. Refer to the documentation pr
.