Allied Telesis AT-S63 User Manual

AT-S63 Management Software Menus Interface User’s Guide

Section VIII: Management Security

831

Note

Option 1 - Server-based Authentication in the menu applies only to
the manager accounts feature described in this chapter. This menu
selection has no affect on the 802.1x port-based access control
feature described in Chapter 31, “802.1x Port-based Network
Access Control” on page 719. When Option 1 is set to disabled, the
default setting, the switch uses the default manager and operator
accounts. When set to enabled, the switch seeks its manager
accounts on a TACACS+ or RADIUS authentication server.

Note

Selection 5, Passwords Configuration, is described in “Changing the
Manager and Operator Passwords” on page 63.

3. To select the active authentication protocol, type 2 to select

Authentication Method.

The following prompt is displayed:

Enter T-TACACS+, R-RADIUS ->

4. Type T to select TACACS+ or R for RADIUS. The default is TACACS+.

Only one protocol can be active on the switch at a time.

5. From the Authentication Configuration menu, type 1 to select Server-

based Authentication.

The following prompt is displayed:

Server Based User Authentication (E-Enabled,
D-Disabled) ->

6. Type E to enable server-based authentication on the switch.

After enabling the feature, you must use the new manager username
and password accounts that you defined on the TACACS+ or RADIUS
authentication server when you initiate future management sessions
on the switch.

7. After making changes, type R until you return to the Main Menu. Then

type S to select Save Configuration Changes.