How can I change rights for online users on S series switches

16

The Change of Authorization (CoA) function means that you can dynamically change rights of users on the RADIUS server through AAA. CoA allows the administrator to change the rights of an authenticated user through RADIUS. For example, employees of an enterprise access the enterprise intranet through different ports. After they go online, the RADIUS server can deliver the specified VLAN ID to the employees using the RADIUS protocol, so that the employees belong to the same VLAN.
The CoA function only applies to RADIUS authentication and cannot be used in local or HWTACACS authentication on S series switches (except S1700 switches).

Other related questions:
How to change rights for online users
The Change of Authorization (CoA) function means that you can dynamically change rights of users on the RADIUS server through AAA. CoA allows the administrator to change the rights of an authenticated user through RADIUS. For example, employees of an enterprise access the enterprise intranet through different ports. After they go online, the RADIUS server can deliver the specified VLAN ID to the employees using the RADIUS protocol, so that the employees belong the same VLAN. The CoA function only applies to RADIUS authorization, and cannot be used through local or HWTACACS authorization.

How do I configure the administrator level on an AR
If non-authentication is used, the administrator level is specified by using the user privilege level command in the VTY interface view. If local authentication is used, the administrator level can be configured in the following ways that are in descending order of priority: 1. Running the local-user privilege level command to configure the local user level 2. Running the admin-user privilege level command to configure the administrator level in a domain 3. Running the user privilege level command to configure the user level in the VTY interface view If remote authentication is used, the administrator level can be configured in the following ways that are in descending order of priority: 1. Using the user level sent by an authentication server to the AR after authentication has succeeded 2. Running the admin-user privilege level command to configure the administrator level in a domain 3. Running the user privilege level command to configure user level in the VTY interface view

Whether the RAID level can be changed
One RAID level cannot be changed to the other level online.

If you have more questions, you can seek help from following ways:
To iKnow To Live Chat
Scroll to top