To edit the access authentication choice, click the Edit button.
General
Radius Authentication Type |
The devices support local and RADIUS (Remote Authentication Dial In User Service) access authentication. When establishing a connection to the device with RADIUS authentication, the device passes RADIUS information securely to the RADIUS server. The RADIUS server then authenticates the user and either allows or denies access. If access is denied and the local authentication option is also configured, the device then authenticates access based on the locally configured users and passwords. For logins and failed logins, a console message is generated with user ID and IP address of the device from which the login originated. Failed logins also are logged as alert level messages in the device system log file. Values: Local: user should be authenticated using locally provisioned user-profile profiles only. Radius: only RADIUS authentication should be used. RadiusThenlocal: the user should be authenticated first by using local user-profile profiles and if that fails, by authentication with a remote RADIUS server. RadiusThenCraft: the user should be authenticated first by using RADIUS authentication and if that fails, then only on the local craft port authentication by local user-profile profiles is allowed but all other ports will be denied access. |
April 3, 2012