Filter
Top Products
CHAPTER
7-1
Catalyst 2950 Desktop Switch Software Configuration Guide
78-14982-01
7
Administering the Switch
This chapter describes how to perform one-time operations to administer your switch. This chapter
consists of these sections:
• Preventing Unauthorized Access to Your Switch, page 7-1
• Protecting Access to Privileged EXEC Commands, page 7-2
• Controlling Switch Access with TACACS+, page 7-10
• Controlling Switch Access with RADIUS, page 7-18
• Configuring the Switch for Local Authentication and Authorization, page 7-32
• Configuring the Switch for Secure Shell, page 7-33
• Managing the System Time and Date, page 7-34
• Configuring a System Name and Prompt, page 7-48
• Creating a Banner, page 7-51
• Managing the MAC Address Table, page 7-54
• Managing the ARP Table, page 7-61
• Switch Software Releases, page 7-61
Preventing Unauthorized Access to Your Switch
You can prevent unauthorized users from reconfiguring your switch and viewing configuration
information. Typically, you want network administrators to have access to your switch while you restrict
access to users who dial from outside the network through an asynchronous port, connect from outside
the network through a serial port, or connect through a terminal or workstation from within the local
network.
To prevent unauthorized access into your switch, you should configure one or more of these security
features:
• At a minimum, you should configure passwords and privileges at each switch port. These passwords
are locally stored on the switch. When users attempt to access the switch through a port or line, they
must enter the password specified for the port or line before they can access the switch. For more
information, see the “Protecting Access to Privileged EXEC Commands” section on page 7-2.