Authentication, Configuring authentication methods for port access – Digi CM User Manual

Configuring Security and Authentication

Chapter 7

67

Permit monitor only mode

•

Enable: A user with “Monitor" permissions can only connect to the port
in read only mode any time.

•

Disable: A user with “Monitor" permissions can connect if a read/write
user has a connection to the port. A read only session is automatically
disconnected if the main user (read/write session) disconnects from the
port.

Authentication

The Digi CM supports multiple methods of user authentication. The following
methods are supported: Local, TACACS+, RADIUS, LDAP, and Kerberos. The
type of authentication protocol you use is dependent on your environment.

Configuring Authentication Methods for Port Access

You can choose between having a single authentication method, such as
RADIUS, or an authentication method where a Local authentication service is
used in addition to the RADIUS, LDAP, TACACS+ server, or Kerberos. These
options are listed when you configure the Digi CM for authentication. To
configure a Digi CM for authentication, do the following:

1. Access the web interface.

2. Under the Serial port heading, choose Configuration.

3. Choose All or an Individual port >

Authentication

.

4. From the drop down menu, choose an authentication method. A

configuration screen for that particular authentication method is displayed.
The following figure displays the parameters for setting up a RADIUS

PC

Connection request

Authentication

server

Server

1.

2. Query

User ID

3. Accept

User ID

4. Access granted