Table of Contents
Advertisement
Chapter 5
Configuring the Management Interface and Security
Options
The following options are available:
•
•
How to Specify AAA Command-Level Authorization Methods
From the SCE(config)# prompt, type:
Command
aaa authorization command level default
method1 [method2]]
How to Delete the AAA Command-Level Authorization Methods List
From the SCE(config)# prompt, type:
Command
no aaa authorization command level default
Configuring AAA Accounting
Use this command to enable or disable TACACS+ accounting.
•
•
If TACACS+ accounting is enabled, the Cisco SCE platform sends an accounting message to the
TACACS+ server after every command execution. The accounting message is logged in the TACACS+
server for the use of the network administrator.
By default, TACACS+ accounting is disabled.
Options
The following options are available:
•
OL-30621-02
level—The privilege level for which to enable the TACACS+ command level authorizarion (0, 5, 10,
15)
method—The command authorization methods to be used. You may specify up to two methods, in
the order in which they are to be used.
–
group TACACS+—Use TACACS+ authorization.
–
none—Use no authorization.
How to Enable AAA Accounting, page 5-30
How to Disable AAA Accounting, page 5-30
level—The privilege level for which to enable the TACACS+ accounting
TACACS+ Authentication, Authorization, and Accounting
Purpose
Specifies AAA command level authorization
methods.
You may list a maximum of two methods. List
them in the order of priority.
Purpose
Deletes AAA command level authorization
methods list.
If the command level authorization methods list is
deleted, the default login authentication method
only (enable password) will be used. TACACS+
authentication will not be used.
Cisco SCE 8000 10GBE Software Configuration Guide
5-29
Advertisement
Chapters
Table of Contents
