Manualshelf

Reference Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S5000
771772773774775776777778779780
774 | Security
www.dell.com | support.dell.com
AAA Authentication
Dell Networking OS supports a distributed client/server system implemented through Authentication,
Authorization, and Accounting (AAA) to help secure networks against unauthorized access. In the Dell
Networking implementation, the Dell Networking system acts as a RADIUS or TACACS+ client and
sends authentication requests to a central RADIUS or TACACS+ server that contains all user
authentication and network service access information.
Dell Networking uses local usernames/passwords (stored on the Dell Networking system) or AAA for
login authentication. With AAA, you can specify the security protocol or mechanism for different login
methods and different users. In Dell Networking OS, AAA uses a list of authentication methods, called
method lists, to define the types of authentication and the sequence in which they are applied. You can
define a method list or use the default method list. User-defined method lists take precedence over the
default method list.
Configuration Task List for AAA Authentication
The following sections provide the configuration tasks:
Configuring login authentication for terminal lines
Configuring AAA Authentication login methods
Enabling AAA Authentication
AAA Authentication—RADIUS
For a complete listing of all commands related to login authentication, refer to the Security chapter in the
Dell Networking OS Command Reference.
Configuring login authentication for terminal lines
You can assign up to five authentication methods to a method list. Dell Networking OS evaluates the
methods in the order in which you enter them in each list. If the first method list does not respond or
returns an error, Dell Networking OS applies the next method list until the user either passes or fails the
authentication. If the user fails a method list, Dell Networking OS does not apply the next method list.
Note: If a console user logs in with RADIUS authentication, the privilege level will be applied from the
RADIUS server if the privilege level is configured for that user in RADIUS whether or not RADIUS
authorization is configured.