Note
Command usage that should be restricted for a user account by RADIUS with CLI authorization may not occur when users are logged in by Chalet or when using the XML API directly. To use Chalet securely, create only read-only users on the switch, and then access Chalet with those user accounts.Note
You can use a local database on each switch as a backup authentication service if the RADIUS service is unavailable. When the RADIUS service is operating, privileges defined on the RADIUS server take precedence over privileges configured in the local database.Note
RADIUS provides many of the same features provided by TACACS+. You cannot use RADIUS and TACACS+ at the same time.RADIUS is a communications protocol (RFC 2865) that is used between client and server to implement the RADIUS service.
The RADIUS client component of the ExtremeXOS software should be compatible with any RADIUS compliant server product.
Note
The switch allows local authentication when the client IP is excluded in RADIUS server.The following sections provide more information on management session authentication:
Print
this page
Email this topic
Feedback
View PDF
Download EPUB