beautypg.com

Rsa radius server, Setting up the rsa radius server – Brocade Fabric OS Administrators Guide (Supporting Fabric OS v7.3.0) User Manual

Page 158

background image

secret password in a safe place. You will need to enter this password in the switch
configuration.

After clicking Finish , add a new client for all switches on which RADIUS authentication
will be used.

b)

In the Internet Authentication Service window, right-click the Remote Access Policies
folder, and then select New Remote Access Policy from the pop-up window.

A remote access policy must be created for each group of Brocade login permissions (root,
admin, factory, switchAdmin, and user) for which you want to use RADIUS. Apply this
policy to the user groups that you already created.

c)

In the Vendor-Specific Attribute Information window, enter the vendor code value 1588 .
Click the Yes. It conforms option, and then click Configure Attribute .

d)

In the Configure VSA (RFC compliant) window, enter the following values, and then click
OK .

Vendor-assigned attribute number -- Enter the value 1 .

Attribute format -- Enter String .

Attribute value -- Enter the login role (root, admin, switchAdmin, user, and so on) that the
user group must use to log in to the switch.

e)

After returning to the Internet Authentication Service window, add additional policies for all
Brocade login types for which you want to use the RADIUS server. After this is done, you
can configure the switch.

NOTE
Windows 2008 RADIUS (NPS) support is also available.

RSA RADIUS server

Traditional password-based authentication methods are based on one-factor authentication, where
you confirm your identity using a memorized password. Two-factor authentication increases the
security by using a second factor to corroborate identification. The first factor is either a PIN or
password and the second factor is the RSA SecurID token.

RSA SecurID with an RSA RADIUS server is used for user authentication. The Brocade switch does
not communicate directly with the RSA Authentication Manager, so the RSA RADIUS server is used in
conjunction with the switch to facilitate communication.

To learn more about how RSA SecurID works, visit www.rsa.com for more information.

Setting up the RSA RADIUS server

For more information on how to install and configure the RSA Authentication Manager and the RSA
RADIUS server, refer to your documentation or visit www.rsa.com.

1. Create user records in the RSA Authentication Manager.
2. Configure the RSA Authentication Manager by adding an agent host.
3. Configure the RSA RADIUS server.

Setting up the RSA RADIUS server involves adding RADIUS clients, users, and vendor-specific
attributes to the RSA RADIUS server.

a)

Add the following data to the vendor.ini file:

vendor-product = Brocade

dictionary = brocade

RSA RADIUS server

158

Fabric OS Administrators Guide

53-1003130-01

See also other documents in the category Brocade Computer Accessories: