Главная
Бренды
Avocent
Сервер
Avocent Cyclades ACS
Установка/Администрирование/Руководство пользователя
Страница 20

Avocent Cyclades ACS Установка/Администрирование/Руководство пользователя - Страница 20

Просмотреть онлайн или скачать pdf Установка/Администрирование/Руководство пользователя для Сервер Avocent Cyclades ACS. Avocent Cyclades ACS 20 страниц. Advanced console server

Печатать страницу

Avocent Cyclades ACS Установка/Администрирование/Руководство пользователя

Cyclades ACS Advanced Console Server Installation/Administration/User Guide

provides more control over the services that are active at any one time. As an additional security

measure, all serial ports are disabled by default, allowing the administrator to enable and assign

individual ports to users.

NOTE: The Default security profile parameters are the same as the Moderate profile.

Authentication

The ACS console server supports a number of authentication methods to assist the administrator

with user management. Authentication can be performed locally or with a remote server, such as

RADIUS, TACACS+, LDAP or Kerberos. An authentication security fallback mechanism is also

employed should the negotiation process with the authentication server fail. In such situations, the

console server follows an alternate defined rule when the authentication server cannot authenticate

the user.

The following table lists the supported authentication methods.

Table 1.2: Authentication Methods Supported

Authentication Type

None

DSView

DSView/Local

DSViewDownLocal

Kerberos

Kerberos/Local

KerberosDownLocal

LDAP

LDAP/Local

LDAPDownLocal

LDAPDownLocal/Radius

Local

Local/Radius

Local/TACACS+

Local/NIS

Definition

No authentication.

Authentication is performed with a DSView

DSView management software authentication is tried first, then Local.

Local authentication is performed only if the DSView 3 server is down.

Authentication is performed using a Kerberos server.

Kerberos authentication is tried first, switching to Local if unsuccessful.

Local authentication is performed only when the Kerberos server is down.

Authentication is performed against an LDAP database using an LDAP server.

LDAP authentication is tried first, switching to Local if unsuccessful.

Local authentication is performed only when the LDAP server is down.

Local authentication is performed only when the LDAP server is down, switching

to Radius if unsuccessful.

Authentication is performed locally. For example using the /etc/passwd file.

Authentication is performed locally first, switching to Radius if unsuccessful.

Authentication is performed locally first, switching to TACACS+ if unsuccessful.

Authentication is performed locally first, switching to NIS if unsuccessful.

3 server.