System access handling

Unimus supports internal and external user authentication.

For more information on system access handling, please see this article: System login.

Local user database management

Local system users can be managed in "User management > Local users".
You can create and/or remove local user accounts here.

One local user account must always be present, so deleting the last user is not possible.

User access roles and access limitation

Unimus support RBAC (role-based access control) - you can limit certain user accounts to specific role-based operations.
For more information please see this article: Account security roles.

In addition to RBAC, Unimus also allows for limiting access of specific accounts to only selected devices in the system (for example, limit junior admins to only see specific switches in Unimus).
For more information please see this article: Device access restrictions

Radius configuration

Unimus contains a Radius client, so it can AAA user logins against a central Radius server.

You will needs to configure a Radius server address (IP or FQDN) and a Radius shared secret.
The "Enable Radius" check-box controls if Radius is used to AAA user logins or not.

The "Show test" function uses currently configured Radius settings, even if they are not saved.
This allows you to test your Radius configuration before saving it to the system.

System access history

The system access history table shows all accounting records written to the local database.

It will tell you who, when and how logged in to Unimus.
Session start and end timestamps are logged, as well as the final session duration.