beautypg.com

Brocade BigIron RX Series Configuration Guide User Manual

Page 6

background image

vi

BigIron RX Series Configuration Guide

53-1002484-04

Configuring SSL security for the Web Management Interface. . . . .73

Enabling the SSL server on the device. . . . . . . . . . . . . . . . . . . . 74
Importing digital certificates and RSA private key files. . . . . . . 74
Generating an SSL certificate . . . . . . . . . . . . . . . . . . . . . . . . . . .75

Configuring TACACS and TACACS+ security . . . . . . . . . . . . . . . . . . . .75

How TACACS+ differs from TACACS. . . . . . . . . . . . . . . . . . . . . . .75
TACACS and TACACS+ authentication, authorization,
and accounting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 76
TACACS and TACACS+ configuration considerations . . . . . . . . .79
Enabling SNMP to configure TACACS and TACACS. . . . . . . . . . .80
Identifying the TACACS and TACACS+ servers . . . . . . . . . . . . . .80
Specifying different servers for individual AAA functions . . . . . 81
Setting optional TACACS and TACACS+ parameters . . . . . . . . . 81
Configuring authentication-method lists for TACACS
and TACACS+ . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .83
Configuring TACACS+ authorization . . . . . . . . . . . . . . . . . . . . . .85
Configuring TACACS+ accounting . . . . . . . . . . . . . . . . . . . . . . . .88
Configuring an interface as the source for all TACACS
and TACACS+ packets . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .89
Displaying TACACS and TACACS+ statistics and
configuration information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .89

Configuring RADIUS security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 91

RADIUS authentication, authorization, and accounting . . . . . . 91
RADIUS configuration considerations. . . . . . . . . . . . . . . . . . . . .94
RADIUS configuration procedure . . . . . . . . . . . . . . . . . . . . . . . . 94
Configuring Brocade-specific attributes on the
RADIUS server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .95
Enabling SNMP to configure RADIUS . . . . . . . . . . . . . . . . . . . . .96
Identifying the RADIUS server to the BigIron RX . . . . . . . . . . . .96
Specifying different servers for individual AAA functions . . . . . 97
Setting RADIUS parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . 97
Configuring authentication-method lists for RADIUS. . . . . . . . .98
Configuring RADIUS authorization . . . . . . . . . . . . . . . . . . . . . . .99
Configuring RADIUS accounting . . . . . . . . . . . . . . . . . . . . . . . .101
Configuring an interface as the source for all RADIUS
packets . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .102
Displaying RADIUS configuration information . . . . . . . . . . . . .103

Configuring authentication-method lists . . . . . . . . . . . . . . . . . . . . .104

Configuration considerations for authentication-
method lists . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .105
Examples of authentication-method lists. . . . . . . . . . . . . . . . .106

Chapter 4

Getting Familiar With the BigIron RX Series Switch Management

Applications

How to manage BigIron RX Series switch . . . . . . . . . . . . . . . . . . . .109

See also other documents in the category Brocade Computer Accessories: