Manualshelf

Users Guide

ManualsBrandsDell ManualsAccess PlatformsEMC Networking MX9116n
471472473474475476477478479480
Create user role
OS10(config)# username smith password silver403! newuser role sysadmin
View users
OS10(config)# do show users
Index Line User Role Application Idle Location Login-Time Lock
----- ----- ------- -------- ----------- ----- ---------------------- ----
1 ttyS0 admin sysadmin login/clish . - 2016-04-14 02:06:00
RADIUS authentication
To congure a RADIUS server for authentication, enter the server's IP address or host name. You can change the UDP port number on the
server and the key used to authenticate the OS10 switch on the server.
Congure a RADIUS authentication server in CONFIGURATION mode. By default, a RADIUS server uses UDP port 1812; the switch
uses radius_server as the key to log in to a RADIUS server.
radius-server host {hostname | ip-address} [auth-port port-number | key authentication-key]
Re-enter the radius-server host command multiple times to congure more than one RADIUS server. If you congure multiple
RADIUS servers, OS10 attempts to connect in the order you congured them. An OS10 switch connects with the congured RADIUS
servers one at a time, until a RADIUS server responds with an accept or reject response.
Congure global settings for the timeout and retransmit attempts allowed on RADIUS servers by using the radius-server
retransmit and radius-server timeout commands. By default, OS10 supports three RADIUS authentication attempts and times
out after ve seconds.
Congure the number of times OS10 retransmits a RADIUS authentication request in CONFIGURATION mode (0 to 100 retries; default
3).
radius-server retransmit retries
Congure the timeout period used to wait for an authentication response from a RADIUS server in CONFIGURATION mode (0 to 1000
seconds; default 5).
radius-server timeout seconds
Congure RADIUS server
OS10(config)# radius-server host 1.2.4.5
OS10(config)# radius-server retransmit 10
OS10(config)# radius-server timeout 10
View RADIUS server conguration
OS10# show running-configuration
...
radius-server host 1.2.4.5
key mysecret
radius-server retransmit 10
radius-server timeout 10
...
Delete RADIUS server
OS10# no radius server host 1.2.4.5
TACACS+ authentication
Congure a TACACS+ authentication server by entering the server's IP address or host name. You must also enter a text string for the key
used to authenticate the OS10 switch on a TACACS+ host. The TCP port entry is optional.
System management
475