Manualshelf

Configuration Guide User guide

ManualsBrandsBrocade ManualsComputer AccessoriesFastIron
1951195219531954195519561957195819591960
FastIron Configuration Guide 1895
53-1002494-02
Web authentication mode configuration
NOTE
Web Authentication will use the first reachable RADIUS server listed in the configuration. The
use-radius-server on individual ports is not supported for Web Authentication.
2. Enable the username and password authentication mode.
Brocade(config-vlan-10-webauth)#auth-mode username-password
3. Enable the RADIUS authentication method. Refer to “Setting the local user database
authentication method” on page 1895 or “Setting the web authentication failover sequence”
on page 1895
Setting the local user database authentication method
By default, the FastIron switch uses a RADIUS server to authenticate users in a VLAN. The previous
section describes how to configure a RADIUS server to authenticate users in a VLAN. To configure
the switch to instead use a local user database to authenticate users in a VLAN, enter the following
command.
Brocade(config-vlan-10-webauth)#auth-mode username-password auth-methods local
Syntax: auth-mode username-password auth-methods local
To revert back to using the RADIUS server, enter the following command.
Brocade(config-vlan-10-webauth)#auth-mode username-password auth-methods radius
Syntax: auth-mode username-password auth-methods radius
Setting the web authentication failover sequence
You can optionally specify a failover sequence for RADIUS and local user database authentication
methods. For example, you can configure Web Authentication to first use a local user database to
authenticate users in a VLAN. If the local user database is not available, it will use a RADIUS
server. Enter the following command.
Brocade(config-vlan-10-webauth)#auth-mode username-password auth-methods local
radius
Syntax: auth-mode username-password auth-methods <method1> <method2>
For <method1> <method2>, enter radius local or local radius.
Assigning a local user database to a web authentication VLAN
After creating or importing a local user database on the FastIron switch and setting the local user
database authentication method to local, you can configure a Web Authentication VLAN to use the
database to authenticate users in a VLAN. To do so, enter a command such as the following.
Brocade(config-vlan-10-webauth)#auth-mode username-password local-user-database
userdb1
These commands configure Web Authentication to use the usernames and passwords in the
userdb1 database to authenticate users in VLAN 10.