Cisco WS-C4003 Software Guide - Page 385
Enabling Kerberos, Defining the Kerberos Local-Realm
View all Cisco WS-C4003 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 385 highlights
Chapter 27 Configuring Switch Access Using AAA Configuring Authentication Enabling Kerberos To enable Kerberos authentication, perform this task in privileged mode: Step 1 Step 2 Task Specify Kerberos as the authentication method. Verify the configuration. Command set authentication login kerberos enable [all | console | http | telnet] [primary] show authentication This example shows how to enable Kerberos as the login authentication method for Telnet and verify the configuration: Console> (enable) set authentication login kerberos enable telnet kerberos login authentication set to enable for telnet session. Console> (enable) show authentication Login Authentication: Console Session Telnet Session tacacs disabled disabled radius disabled disabled kerberos disabled enabled(primary) local enabled(primary) enabled Enable Authentication:Console Session Telnet Session tacacs disabled disabled radius disabled disabled kerberos disabled enabled(primary) local enabled(primary) enabled Console> (enable) This example shows how to enable Kerberos as the login authentication method for the console and verify the configuration: Console> (enable) set authentication login kerberos enable console kerberos login authentication set to enable for console session. Console> (enable) show authentication Login Authentication: Console Session Telnet Session tacacs disabled disabled radius disabled disabled kerberos enabled(primary) enabled(primary) local enabled enabled Enable Authentication:Console Session Telnet Session tacacs disabled disabled radius disabled disabled kerberos enabled(primary) enabled(primary) local enabled enabled Console> (enable) Defining the Kerberos Local-Realm The Kerberos realm is a domain consisting of users, hosts, and network services that are registered to a Kerberos server. To authenticate a user defined in the Kerberos database, the switch must know the host name or IP address of the host running the KDC and the name of the Kerberos realm. 78-12647-02 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 27-31