Ruijie Community

Title: How to configure login RGOS switch's CLI using username from RADIUS server? [Print this page]

---

Author: zhangqiao@ruiji    Time: 2024-12-25 14:34
Title: How to configure login RGOS switch's CLI using username from RADIUS server?
Introduction of CLI authentication

To secure the switch for Console/Telnet/SSH access by using AAA methods.

Applied scenarios

When there are multiple devices in the network, it's a hassle to still use local management username/password for managing devices.

Case of configuration

a) Requirement

Ruijie device with RGOS system

b) Network Topology

N/A

c) Configuration

Ruijie# configure terminal

Ruijie(config)# aaa new-model

//Add RADIUS server to server list, you need tocheck the RADIUS server's connectivity first.

Ruijie(config)# radius-server host RADIUS-SERVER-IPkey SERVER-KEY

//By default, using RADIUS to authenticate, if noneof RADIUS servers are reachable, fallback to local authentication

Ruijie(config)# aaa authentication login defaultgroup radius local

//Define a user for remote access fallback

Ruijie(config)# username remotefallback passwordremotefallback

//Apply for console access

Ruijie(config)# line console 0

Ruijie(config-line)# login authentication default

//Apply for SSH access

Ruijie(config)# line vty 0 4

Ruijie(config-line)# login authentication default

Ruijie(config-if)# end

Ruijie#

After that, we can check if it works.

I will show an example of console connect using SecureCRT.

Select tab "File" -> "Quick Connect"

Choose "Protocol" to "Serial", set port to COM*, set Baud rate to 9600, then click connect.

After we input username and password, a prompt shows we are authenticated.

---

Welcome to Ruijie Community (https://community.ruijienetworks.com/)

Powered by Discuz! X3.2