User database concepts, Figure 5. user database architecture – MultiDyne ACI-2058 User Manual
Page 50
Chapter 2: Introducing W
EB
X
A54-3000-100 A
11
A
PCON
, Inc.
2.6.
User Database Concepts
W
EB
X provides the tools you need to specify the default permission, or access level, for new
user accounts. You can configure or modify user accounts for access at any of these levels:
•
Guest: Users with this permission level have read-only access. This is the lowest
permission level.
•
Operator: Users with this permission level can do all that Guest-level users can do, plus
patch ports using only preset configurations.
•
Advanced Operator: Users with this permission level can do all that Operator-level users
can do, plus patch ports on an ad-hoc basis, change rates and port names, plus save
configuration settings (“presets”).
•
Administrator: Users with this permission level do everything that the other levels do,
plus set switch, blade, port, and other information as well as set and clear user and
security information. This is the highest permission level.
W
EB
X sends user access information to the Preferences Security database in your
I
NTELLA
P
ATCH
switch.
With the flexible architecture of the user database, you can select any one of these
approaches to store user or access names:
I
NTELLA
P
ATCH
switches support up to three different RADIUS or TACACS+ servers for user
authentication. W
EB
X consults them in a failover sequence. The first server is always
consulted first and is considered the primary server. If no response, the second is consulted,
and so on. If the primary is down, this could lead to longer login times.
Figure 5. User Database Architecture
•
RADIUS or TACACS+ server: This option
points to the user names stored on a
RADIUS or TACACS+ server. This option
works in conjunction with the local User
Database. If a user exists in both
databases, the local database takes
precedence.
•
Internal user database: This option stores
user names and access information within
the switch. This database includes
an
admin
account, which acts as a local
administrator.
W
EB
X
RADIUS or
TACACS+ server
Logic
Security
attributes
Security
attributes