Configuration Task List For Radius - Dell Force10 Z9000 Configuration Manual
Ftos configuration guide for z9000 system
Hide thumbs
Also See for Force10 Z9000:
- Reference manual (1483 pages) ,
- Configuration manual (848 pages) ,
- Manual (56 pages)
Table of Contents
Advertisement
Set access to privilege levels through RADIUS
Through the RADIUS server, you can use the command
user to enter into when they connect to a session.This value is configured on the client system.
Configuration Task List for RADIUS
To authenticate users using RADIUS, at least one RADIUS server must be specified so that the system can
communicate with and configure RADIUS as one of your authentication methods.
The following list includes the configuration tasks for RADIUS.
•
Define a aaa method list to be used for RADIUS
•
Apply the method list to terminal lines
•
Specify a RADIUS server host
•
Set global communication parameters for all RADIUS server hosts
•
Monitor RADIUS
For a complete listing of all FTOS commands related to RADIUS, refer to the Security chapter in the
FTOS Command Reference Guide.
Note: RADIUS authentication and authorization are done in a single step. Hence, authorization
cannot be used independent of authentication. However, if RADIUS authorization is configured
and authentication is not, then a message is logged stating this. During authorization, the next
method in the list (if present) is used, or if another method is not present, an error is reported.
To view the configuration, use the
the EXEC Privilege mode.
Define a AAA method list to be used for RADIUS
To configure RADIUS to authenticate or authorize users on the system, you must create a AAA method
list. Default method lists do not need to be explicitly applied to the line, so they are not mandatory. To
create a method list, enter one of the following commands in CONFIGURATION mode:
Command Syntax
aaa authentication login
method-list-name radius
aaa authorization exec
{method-list-name | default} radius
tacacs+
|
Security
796
(mandatory except when using default lists)
(mandatory)
(optional)
show config
in the LINE mode or the
Command Mode
CONFIGURATION
CONFIGURATION
privilege level
to configure a privilege level for the
(mandatory)
(optional)
show running-config
Purpose
Enter a text string (up to 16 characters long) as the name
of the method list you wish to use with the RADIUS
authentication method.
Create methodlist with RADIUS and TACACS+ as
authorization methods. Typical order of methods:
RADIUS, TACACS+, Local, None. If authorization is
denied by RADIUS, the session ends (radius should not
be the last method specified).
command in
Advertisement
Chapters
Table of Contents
Troubleshooting
