System information

2-11
Security
2
Security
Use the Passwords or RADIUS/TACACS+ menu to restrict management access
based on specified user names and passwords. You can manually configure access
rights on the switch (Passwords menu), or you can use a remote access
authentication server based on the RADIUS/TACACS+ protocol. After you set up
user names and passwords on the RADIUS/TACACS+ server, you can use IEEE
802.1x port authentication to control access to specific ports (dot1X menu).
Configuring the Logon Password
The guest only has read access for most configuration parameters. However, the
administrator has write access for all parameters governing the onboard agent. You
should therefore assign a new administrator password as soon as possible, and
store it in a safe place. (If for some reason your password is lost, you can delete all
the user-defined configuration files to restore the factory defaults and the default
password as described in “Upgrading Firmware via the Serial Port” on page A-1.)
The default guest name is “guest” with the password “guest.” The default
administrator name is “admin” with the password “admin.” Note that user names can
only be assigned via the CLI.
Command Attributes
User Name* – The name of the user.
(Maximum length: 8 characters; maximum number of users: 5)
Access Level* – Specifies the user level.
(Options: Normal and Privileged)
Password – Specifies the user password.
(Range: 0-8 characters plain text, case sensitive)
* CLI only.
Web – Click System, Passwords. Enter the old password, enter the new password,
confirm it by entering it again, then click Apply.
Figure 2-5. Configuring a New Password