Home > Others

Use ACS 5.2 to implement RADIUS Authentication

Source: Internet
Author: User
Tags custom name
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

1. log on to acs5.2

650) This. width = 650; "Title =" 1.png" src = "http://s3.51cto.com/wyfs02/M01/4C/BB/wKioL1REqmbhCSieAARkjLY7lhQ675.jpg" alt = "wkiol1reqmbhcsie1_kjly7lhq675.jpg"/>

2. log on to the acs5.2 interface.

650) This. width = 650; "Title =" 2.png" src = "http://s3.51cto.com/wyfs02/M02/4C/BB/wKioL1REqnWTLh9fAAV82JAwmBo540.jpg" alt = "wkiol1reqnwtlh9faav82jawmbo540.jpg"/>

3. Click networkdevice group, Click location, go to the location page, and click Create to configure the location for the device to be authenticated (either configured or not, that is, define a location for the device)

650) This. width = 650; "Title =" 3.png" src = "http://s3.51cto.com/wyfs02/M02/4C/BB/wKiom1REqjqhMQE1AARLNhwczOs502.jpg" alt = "wkiom1reqjqhmqe11_lnhwczos502.jpg"/>

650) This. width = 650; "Title =" 4.png" src = "http://s3.51cto.com/wyfs02/M01/4C/BB/wKioL1REqpKQ7dtfAASLGiOsy6Q165.jpg" alt = "wkiol1reqpkq7dtfaaslgiosy6q165.jpg"/>

650) This. width = 650; "Title =" 5.png" src = "http://s3.51cto.com/wyfs02/M02/4C/BB/wKiom1REqlmghlDVAARNnerzReY059.jpg" alt = "wkiom1reqlmghldvaarnnerzrey059.jpg"/>

4. Click "devicetype" and then click "CREATE" to configure the device type for the device to authenticate. (You can configure or disable the device type to facilitate management)

650) This. width = 650; "Title =" 6.png" src = "http://s3.51cto.com/wyfs02/M01/4C/BB/wKiom1REqmrDbqXMAARZkY_i91E520.jpg" alt = "wkiom1reqmrdbqxmaarzky_i91e51_jpg"/>

650) This. width = 650; "Title =" 7.png" src = "http://s3.51cto.com/wyfs02/M00/4C/BC/wKioL1REqsWBbSUuAASm5GKVl7U487.jpg" alt = "wkiol1reqswbbsuuaasm5gkvl7u487.jpg"/>

650) This. width = 650; "Title =" 8.png" src = "http://s3.51cto.com/wyfs02/M02/4C/BC/wKioL1REqtPipmCYAARSSuZo5To214.jpg" alt = "wkiol1reqtpipmcyaarssuzo5to214.jpg"/>

5. Click networkdevice and AAA client and then click Create to create a network device that will provide authentication through the RADIUS service of ACS.

650) This. width = 650; "Title =" 9.png" src = "http://s3.51cto.com/wyfs02/M00/4C/BB/wKiom1REqpmh4Qm0AARqaDB-vJM339.jpg" alt = "wKiom1REqpmh4Qm0AARqaDB-vJM339.jpg"/>

Name: The name of a device. You can use the sysname of the device. Is a custom name

Location: Select indicates the device location defined above.

Device Type: select is the device type defined above.

IP Address: the original address for communications with ACS when the network device configures the radius.

Then select radius:

Share secret: the shared-key when the network device configures the radius

650) This. width = 650; "Title =" 10.png" src = "http://s3.51cto.com/wyfs02/M02/4C/BB/wKiom1REqqnR9wUtAALc5aLFlDA017.jpg" alt = "wkiom1reqqnr9wutaalc5alflda017.jpg"/>

6. Click User andidentity stores (configure the user and password used for telnet or SSH Login)

Click identitygroups: first, create the group

650) This. width = 650; "Title =" 11.png" src = "http://s3.51cto.com/wyfs02/M01/4C/BC/wKioL1REqwDwd-HXAAHLjIO04Rk607.jpg" alt = "wKioL1REqwDwd-HXAAHLjIO04Rk607.jpg"/>

7. Click Users to create the user and password used for telnet or SSH login.

Name: User Name

Password: logon Password

650) This. width = 650; "Title =" 12.png" src = "http://s3.51cto.com/wyfs02/M01/4C/BB/wKiom1REqsLRD3qTAAKmmcaBbH0905.jpg" alt = "wkiom1reqslrd3qtaakmmcabbh0905.jpg"/>

So far. Complete the simplest ACS configuration.

8. network device configuration process

Use templete to define the information of the RADIUS server (server address port, share-key, user-name format)

Radius-server template Test

Radius-server authentication10.1.1.110 1812

Undoradius-Server user-Name Domain-included

Enter AAA Configuration Mode

Aaa

Use templete to define authentication information (Authentication Mode)

Authentication-scheme Test

Authentication-mode radius

Enter the default-Admin Domain Binding authentication template and radius-server template (ThisDefault-AdminThe domain is the default domain of the system and is used for management. Therefore, Telnet, SSHThis default domain must be used when logging on to the device. It cannot be defined by yourself.)

Domain default_admin

Authentication-scheme Test

Radius-servertest

Enter the Authentication Mode of vty configuration device login to AAA (the default privilege is 0, so we need to configure privilege or configure super password to enhance the permission after login)

User-interface vty 0 4

Authentication-mode aaa

User Privilege level 15

Idle-timeout0 0

9. login demonstration

650) This. width = 650; "Title =" 13.png" src = "http://s3.51cto.com/wyfs02/M00/4C/BB/wKiom1REqu_AIbKxAAKFPKCkmD8765.jpg" alt = "wkiom1requ_aibkxaakfpkckmd8765.jpg"/>


Cloud start


Use ACS 5.2 to implement RADIUS Authentication 

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
php radius authentication radius authentication server requires f5 radius authentication radius authentication methods how to implement interface es mean to implement how to implement recaptcha

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More