Re: Brocade switch admin role

---

• From: The KOOY <TheKOOY@xxxxxxxxxxxxxxxxxxxxxxxxx>
• Date: Tue, 18 Mar 2008 09:56:01 -0700

---

6. Next, right-click on Remote Access Policy, and select “New Remote Access
Policy”. Figure 4.


Figure 4

7. Do NOT use the WIZARD. Select Custom and give your policy a name. Each
role will require an individual policy. Figure 5.


Figure 5





8. Click Next. Under “Policy Conditions”, Add the “Windows Group” that will
be authorized against the switch. It cant be individual users. If in Active
Directory, create a group and add the respective users to it. For stand
alones, just create local users and add to a group.
9. Select another “Policy Condition”, “Authentication Type”. Add PAP to the
list.
10. Click Next, select “Grant remote access permissions”
11. Click Next, click “Edit Profile”
12. Under the “Authentication” tab, make sure PAP is checked. Figure 6


Figure 6

13. Then click the “Advanced” tab. Click “Add”, select “Vendor-specific”
from the list. Click “Add” again in the pop-up.

14. Select “Enter vendor code”. Input the value “1588”. Figure 7


Figure 7


15. Select “Yes, it conforms”, then click on “Configure attribute”.
Configure as follows.

Vendor Assigned attribute : 1
Attribute Format : String
Attribute value : admin

The “admin” value is changed accordingly based on the roles the policy is for.
Figure 8.

Figure 8

16. Then click Finish.

--
The KOOY


"S. Pidgorny <MVP>" wrote:

By configuring the switch to use RADIUS authentication and pointing it to
IAS as hte AAAA server?

--
Svyatoslav Pidgorny, MS MVP - Security, MCSE
-= F1 is the key =-

* http://sl.mvps.org * http://msmvps.com/blogs/sp *

"Nitz Walsh" <starcrunch17@xxxxxxxxxxxx> wrote in message
news:uoXGciBZIHA.5612@xxxxxxxxxxxxxxxxxxxxxxx

Hi,

How can i give an admin role to users authenticated with IAS on my Brocade
switches ?

.

---

• Prev by Date: Windows Server 2008 Network Shell (Netsh) Technical Reference is available for download
• Next by Date: Multiple Radius servers question
• Previous by thread: Windows Server 2008 Network Shell (Netsh) Technical Reference is available for download
• Next by thread: Multiple Radius servers question
• Index(es):
  • Date
  • Thread

---

Relevant Pages RE: wired 802.1x security in windows 2000 ... I'm too trying to set it up for supplicants XPSP2 with a switch ... Cisco Catalyst 2950 and IAS in a w2k server, ... but xp supplicants can not to connect. ... (microsoft.public.win2000.security) Re: 802.1x Authentication ... PEAP for authentication. ... Second, to answer your question in your last post, is your IAS server ... >> Double check the radius shared secret key on both the switch & IAS. ... I'm trying to set up 802.1x authentication. ... (microsoft.public.internet.radius) Re: 802.1x Authentication ... I have a switch Catalyst ... Log in IAS indicate "signature attribute is not ... Because the documentation of Cisco say this switch use EAPOL ... MVP - Windows Networking ... (microsoft.public.windowsxp.network_web) Re: 802.1x Authentication ... Double check the radius shared secret key on both the switch & IAS. ... Is EAPOL equal to PEAP or they are ... Because the documentation of Cisco says this switch use EAPOL ... (microsoft.public.internet.radius) Re: 802.1x Authentication ... Shared secret key is the same on both the switch and IAS; ... but now the error message is: "Could not retrieve the Remote Access Server's ... (microsoft.public.internet.radius)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > Internet  > microsoft.public.internet.radius  > 2008-03