Netgear XCM8810 - 8800 SERIES 10-SLOT CHASSIS SWITCH ユーザーズマニュアル

Authenticating Network Login Users Through a RADIUS 
Server

You can use a RADIUS server to authenticate network login users and supply configuration 
data that the switch can use to make dynamic configuration changes to accommodate 
network login users. A RADIUS server allows you to centralize the authentication database, 
so that you do not have to maintain a separate local database on each switch. RADIUS 
servers provide the following services for network login sessions:

Username and password authentication

Standard RADIUS attributes and NETGEAR VSAs that the switch can use for dynamic 

configuration

Accounting service (tracks authentication and authorization events)

To use RADIUS server features, you need the following components:

RADIUS client software, which is included in the XCM8800 software.

A RADIUS server, which is a third-party product.

RADIUS provides many of the same features provided by 

TACACS+, but the network login feature does not work with 
TACACS+.

The following sections provide more information on network login session authentication:

How Network Login Authentication Differs from Management 

Session Authentication

Network login authentication is very similar to management session authentication. The 
differences are:

Network login authentication grants network access to devices connected to a switch 

port, and management session authentication grants management access to the switch 
for configuration and management.

The user name for network login authentication can be a MAC address.

Standard RADIUS attributes and NETGEAR VSAs can be used with the network login 

and universal port features to configure switch ports and general switch configuration 
parameters.