Centralized authentication - server

Information

Authenticating users through RADIUS/TACACS provides a centralized way to manage access to the switch. This allows the administrator to make modifications to the set of authorized users without having to make changes on every network device. RADIUS/TACACS authentication is supported by Aruba ClearPass Policy Manager.

Solution

In the following example, a RADIUS server at IP address 10.100.0.253, with the authentication key "secret", is configured to be used for authentication on the switch:

switch(config)# radius-server host 10.100.0.253 key secret

Similar to the RADIUS example above, the following command designates a TACACS server at 10.100.0.252, with the authentication key "terces", as an authentication server:

switch(config)# tacacs-server host 10.100.0.252 key terces

See Also

https://support.hpe.com/hpesc/public/docDisplay?docId=a00056155en_us

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-2

Plugin: ArubaOS

Control ID: eee6c9b1ed9b0afee0e70b6801df7e0ed9d60c27e7e77143ccd4b70d46848c1c