Controlling Management Access 1699Controlling Management AccessThis chapter describes how to control access to the switch managementinterface through switch-based authentication or by using TACACS+ orRADIUS servers. It also includes information about controlling accessthrough Telnet, SSH, HTTP, and HTTPs. The Denial of Service (DoS)protection feature is also described in this chapter.The topics covered in this chapter include:• Management Access Control Overview• Default Management Security Values• Controlling Management Access (Web)• Controlling Management Access (CLI)• Management Access Configuration ExamplesManagement Access Control OverviewBy default, management access to the switch through the out-of-band (OOB)port and in-band switch ports requires a user account to be configured on theswitch. A user can access the switch management interface only afterproviding a valid username and password combination that matches the useraccount information stored in the user database configured on the switch.PowerConnect 7000 Series switches include several additional features toincrease management security and help prevent unauthorized access to theswitch configuration interfaces (CLI, Web-based, and SNMP).Table 9-1 provides an overview of the management security features theswitch supports.
