Filter
Top Products
4-28
Cisco Intrusion Prevention System CLI Sensor Configuration Guide for IPS 7.1
OL-19892-01
Chapter 4 Setting Up the Sensor
Configuring Authentication and User Parameters
RADIUS Authentication Functionality and Limitations
The current AAA RADIUS implementation has the following functionality and limitations:
• Authentication with a RADIUS server—However, you cannot change the password of the RADIUS
server from the IPS.
• Authorization—You can perform role-based authorization by specifying the IPS role of the user on
the RADIUS server.
• Accounting—The login attempts of the user and the configuration changes are logged as events
locally on the IPS. However, these account messages are not communicated to the RADIUS server.
Configuring Passwords
Use the password command to update the password on the local sensor. You can also use this command
to change the password for an existing user or to reset the password for a locked account. A valid
password is 8 to 32 characters long. All characters except space are allowed.
To change the password, follow these steps:
Step 1 To change the password for another user or reset the password for a locked account, follow these steps:
a. Log in to the CLI using an account with administrator privileges.
b. Enter configuration mode.
sensor# configure terminal
c. Change the password for a specific user. This example modifies the password for the user “tester.”
sensor(config)# password tester
Enter New Login Password: ******
Re-enter New Login Password: ******
Step 2 To change your password, follow these steps:
a. Log in to the CLI.
b. Enter configuration mode.
sensor# configure terminal
c. Change your password.
sensor(config)# password
Enter Old Login Password:************
Enter New Login Password: ************
Re-enter New Login Password: ************
For More Information
For the procedures for recovering sensor passwords, see Recovering the Password, page 17-2.