Versions Compared

Version Old Version 2 New Version Current
Changes made by

Jennifer Xiao

Jennifer Xiao

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Note: These configurations are just used for illustration. Ensure that the CLIs you use are compatible with the version of PICOS PicOS being used.

# TACACS+ configurations

set system aaa tacacs-plus disable false
set system aaa tacacs-plus key 12345678
set system aaa tacacs-plus server-ip 10.10.51.42
set system login user test authentication plain-text-password xxxxxx
set system login user test class super-user

# SNMP ACL configurations

set system snmp-acl network 192.168.1.0/24
set system snmp-acl network 10.8.0.0/24

# NAC configurations

# Provide the RADIUS server connection information

set protocols dot1x aaa radius authentication server-ip <Radius server IP> shared-key "<Key>"

# Configure the access profile

set protocols dot1x aaa radius nas-ip <switch management IP>

# Configure a RADIUS dynamic authorization client from which the switch accepts the Change of Authorization (CoA) messages

set protocols dot1x aaa radius dynamic-author client <Radius server IP> shared-key "<key>"

# Configure Server Priority

set protocols dot1x aaa radius authentication server-ip <Radius server IP> priority [1|2]
set protocols dot1x server-fail-vlan-id <vlan-id of guest or fallback, say: 20>