Manualshelf

System information

ManualsBrandsPlanex ManualsComputer equipmentFMS-24K
251252253254255256257258259260
3-130
Command Line Interface
3
radius - Use RADIUS server password only.
tacacs - Use TACACS server password only.
Default Setting
Local
Command Mode
Global Configuration
Command Usage
RADIUS uses UDP while TACACS+ uses TCP. UDP only offers best effort
delivery, while TCP offers a connection-oriented transport. Also, note that
RADIUS encrypts only the password in the access-request packet from the
client to the server.
RADIUS and TACACS+ logon authentication can control management
access via the console port, a Web browser, or Telnet. These access options
must be configured on the authentication server.
RADIUS and TACACS+ logon authentication assigns a specific privilege level
for each user name and password pair. The user name, password, and
privilege level must be configured on the authentication server.
You can specify three authentication methods in a single command to indicate
the authentication sequence. For example, if you enter “authentication login
radius tacacs local,” the user name and password on the RADIUS server is
verified first. If the RADIUS server is not available, then authentication is
attempted on the TACACS+ server. If the TACACS+ server is not available,
the local user name and password is checked.
Example
Related Commands
username (3-23)
RADIUS Client
Remote Authentication Dial-in User Service (RADIUS) is a logon authentication
protocol that uses software running on a central server to control access to
RADIUS-aware devices on the network. An authentication server contains a
database of multiple user name/password pairs with associated privilege levels for
each user or group that require management access to a switch.
Console(config)#authentication login radius
Console(config)#