Manualshelf

HP StorageWorks Fabric OS 5.X Advanced Web Tools Administrator Guide (AA-RVHYB-TE, September 2005)

ManualsBrandsHP ManualsStorageHP StorageWorks SAN Switch 4/32 Power Pack
61626364656667686970
68 Configuring standard security features
Enabling and disabling RADIUS service
At least one RADIUS server must be configured before you can enable RADIUS service.
1. Launch the Switch Admin module as described on page 36.
2. Click the AAA Service tab.
3. To enable RADIUS service, select a RADIUS service from the Primary AAA Service drop-down list,
select None or Switch Database from the Secondary AAA Service drop-down list.
To disable RADIUS service, select Switch Database from the Primary AAA Service drop-down list and
select None from the Secondary AAA Service drop-down list.
4. Click Apply.
Configuring the RADIUS server
The configuration is chassis-based, so it applies to all logical switches (domains) on the switch and
replicates itself on a standby CP, if one is present. It is saved in a configuration upload, and so it can be
applied to other switches in a configuration download. You should configure at least two RADIUS servers
so that if one fails, the other assumes service.
You can configure the RADIUS server even if it is disabled. You can configure up to five RADIUS servers.
You must be logged in as admin or switchAdmin to configure the RADIUS server.
To configure the RADIUS server
1. Launch the Switch Admin module as described on page 36.
2. Click the AAA Service tab.
3. Click Add.
The RADIUS Configuration dialog box opens.
NOTE: You can configure up to five RADIUS servers. If five RADIUS servers are already configured, the
Add button is disabled.
4. Enter the RADIUS server name, which is a valid IP address or Dynamic Name Server (DNS) string.
Each RADIUS server must have a unique IP address or DNS name for the RADIUS server.
5. Optional: Enter the port number.
6. Optional: Enter the secret string.
7. Optional: Enter the timeout time in minutes.
8. Optional: Select an authentication protocol from CHAP or PAP.
The default value is CHAP; if you do not change it, CHAP becomes the authentication protocol.
9. Click OK to return to the AAA Service tab.
10.Click Apply.
Modifying the RADIUS server
Use the following procedure to change the parameters of a RADIUS server that is already configured.
1. Launch the Switch Admin module as described on page 36.
2. Click the AAA Service tab.
3. Click a RADIUS server from the RADIUS Configuration list.
4. Click Modify.
The RADIUS Configuration dialog box opens.
5. Enter new values for the port number, secret string, and timeout time (in minutes).
6. Select an authentication protocol from CHAP or PAP.
The default value is CHAP; if you do not change it, CHAP becomes the authentication protocol.
7. Click OK to return to the AAA Service tab.
8. Click Apply.