You can configure Remote Access Dial-In User Services (RADIUS) to secure networks against unauthorized access, and allow communication servers and clients to authenticate users identity through a central database.
The database within the RADIUS server stores client information, user information, password, and access privileges, including the use of shared secret.
RADIUS supports IPv4 and IPv6 addresses, with no difference in functionality or configuration using CLI.
RADIUS is a fully open and standard protocol, defined by RFCs (Authentication: RFC2865, accounting RFC2866). With the switch, you use RADIUS authentication to secure access to the device (console/Telnet/SSH), and RADIUS accounting to track the management sessions for Command Line Interface (CLI) only.
RADIUS authentication allows the remote server to authenticate logons. RADIUS accounting logs all of the activity of each remote user in a session on the centralized RADIUS accounting server.