Manualshelf

User Manual

ManualsBrandsPLANET Technology ManualsLAN SwitchesLayer 3 24-Port 10G SFP+ + 4-Port 100G QSFP28 Managed Switch
919293949596979899100
96
Users Manual of XGS-6350-24X4C
6.2.4.3 Specifying RADIUS Authentication
After you have identified the RADIUS server and defined the RADIUS authentication key, you must define
method lists for RADIUS authentication. Because RADIUS authentication is facilitated through AAA, you must
enter the aaa authentication command, specifying RADIUS as the authentication method. For more
information, refer to the chapter "Configuring Authentication."
6.2.4.4 Specifying RADIUS Authorization
AAA authorization lets you set parameters that restrict a user's access to the network. Authorization using
RADIUS provides one method for remote access control, including one-time authorization or authorization for
each service, per-user account list and profile, user group support, and support of IP, IPX, ARA, and Telnet.
Because RADIUS authorization is facilitated through AAA, you must issue the aaa authorization command,
specifying RADIUS as the authorization method. For more information, refer to the chapter "Configuring
Authorization."
6.2.4.5 Specifying RADIUS Accounting
The AAA accounting feature enables you to track the services users are accessing as well as the amount of
network resources they are consuming. Because RADIUS accounting is facilitated through AAA, you must
issue the aaa accounting command, specifying RADIUS as the accounting method. For more information,
refer to the chapter "Configuring Accounting."
6.2.5 RADIUS Configuration Examples
6.2.5.1 RADIUS Authentication and Authorization Example
The following example shows how to configure the router to authenticate and authorize using RADIUS:
aaa authentication login use-radius group radius local
The lines in this sample RADIUS authentication and authorization configuration are defined as follows: :
aaa authentication login use-radius radius local configures the router to use RADIUS for authentication at the
login prompt. If RADIUS returns an error, the user is authenticated using the local database. In this example,
use-radius is the name of the method list, which specifies RADIUS and then local authentication.
RADIUS Authentication, Authorization, and Accounting Example
The following example shows a general configuration using RADIUS with the AAA command set: :
radius-server host 1.2.3.4
radius-server key myRaDiUSpassWoRd
username root password AlongPassword
aaa authentication login admins radius local
line vty 1 16
login authentication admins
The lines in this example RADIUS authentication, authorization, and accounting configuration are defined as
follows: :