Cisco Nexus 5000 Series Switch CLI Software Configuration Guide, NX-OS 4.0(1a)N1 (OL-16597-01, January 2009)
Send feedback to nx5000-docfeedback@cisco.com
Contents
ix
Cisco Nexus 5000 Series Switch CLI Software Configuration Guide
OL-16597-01
Switch Security Features
CHAPTER
16 Configuring AAA 16-1
Information About AAA 16-1
AAA Security Services 16-1
Benefits of Using AAA 16-2
Remote AAA Services 16-2
AAA Server Groups 16-3
AAA Service Configuration Options 16-3
Authentication and Authorization Process for User Login 16-4
Prerequisites for Remote AAA 16-5
AAA Guidelines and Limitations 16-6
Configuring AAA 16-6
Configuring Console Login Authentication Methods 16-6
Configuring Default Login Authentication Methods 16-8
Enabling Login Authentication Failure Messages 16-8
Enabling MSCHAP Authentication 16-9
Configuring AAA Accounting Default Methods 16-10
Using AAA Server VSAs with Nexus 5000 Series Switches 16-11
Displaying and Clearing the Local AAA Accounting Log 16-12
Verifying AAA Configuration 16-12
Example AAA Configuration 16-12
Default Settings 16-13
CHAPTER
17 Configuring RADIUS 17-1
Information About RADIUS 17-1
RADIUS Network Environments 17-1
RADIUS Operation 17-2
RADIUS Server Monitoring 17-3
Vendor-Specific Attributes 17-3
Prerequisites for RADIUS 17-4
Guidelines and Limitations 17-4
Configuring RADIUS Servers 17-4
Configuring RADIUS Server Hosts 17-5
Configuring Global Preshared Keys 17-6
Configuring RADIUS Server Preshared Keys 17-6
Configuring RADIUS Server Groups 17-7
Allowing Users to Specify a RADIUS Server at Login 17-8