Manualshelf

Configuration Guide User guide

ManualsBrandsBrocade ManualsComputer AccessoriesFastIron
1941194219431944194519461947194819491950
1892 FastIron Configuration Guide
53-1002494-02
Web authentication mode configuration
Web authentication mode configuration
You can configure the FastIron switch to use one of three Web Authentication modes:
Username and password – Block users from accessing the switch until they enter a valid
username and password on a web login page. Refer to “Using local user databases” on
page 1892.
Passcode – Blocks users from accessing the switch until they enter a valid passcode on a web
login page. Refer to Passcodes for user authentication” on page 1896.
None – Blocks users from accessing the switch until they press the ’Login’ button. A username
and password or passcode is not required. Refer to Automatic authentication” on page 1900.
This following sections describe how to configure these Web Authentication modes.
Using local user databases
Web Authentication supports the use of local user databases consisting of usernames and
passwords, to authenticate devices. Users are blocked from accessing the switch until they enter a
valid username and password on a web login page.
Once a user successfully authenticates through username and password, the user is subjected to
the same policies as for RADIUS-authenticated devices (for example, the re-authentication period,
maximum number of users allowed, etc.). Similarly, once a user fails username and password
authentication, the user is subjected to the same policies as for devices that fail RADIUS
authentication.
You can create up to ten local user databases on the FastIron switch either by entering a series of
CLI commands, or by uploading a list of usernames and passwords from a TFTP file to the FastIron
switch. The user databases are stored locally, on the FastIron switch.
Configuring a local user database
Follow the steps given below to configure a local user database.
1. Create the local user database.
2. Add records to the local user database either by entering a series of CLI commands, or by
importing a list of user records from an ASCII text file on the TFTP server to the FastIron switch.
3. Set the local user database authentication mode.
4. If desired, set the authentication method (RADIUS/local) failover sequence.
5. Assign a local user databse to a Web Authentication VLAN.
Creating a local user database
The FastIron switch supports a maximum of ten local user databases, each containing up to 30
user records. Each user record consists of a username and password.
To create a local user database, enter a command such as the following.
Brocade#(config)#local-userdb userdb1
Brocade#(config-localuserdb-userdb1)#