Chapter 12
| Security Measures
AAA (Authentication, Authorization and Accounting)
Parameters
These parameters are displayed:
Configure Method
◆
Authorization Type – Specifies the service as:
Command – Administrative authorization to apply to commands entered
■
at specific CLI privilege levels.
Exec – Administrative authorization for local console, Telnet, or SSH
■
connections.
◆
Method Name – Specifies an authorization method for service requests. The
"default" method is used for a requested service if no other methods have been
defined. (Range: 1-64 characters)
◆
Server Group Name - Specifies the authorization server group.
(Range: 1-64 characters)
The group name "tacacs+" specifies all configured TACACS+ hosts (see
"Configuring Local/Remote Logon Authentication" on page
group name refers to a server group configured on the TACACS+ Group
Settings page. Authorization is only supported for TACACS+ servers.
Configure Service
◆
Authorization Type – Specifies the service as Exec, indicating administrative
authorization for local console, Telnet, or SSH connections.
◆
Console Method Name – Specifies a user defined method name to apply to
console connections.
◆
VTY Method Name – Specifies a user defined method name to apply to Telnet
and SSH connections.
Show Information
◆
Authorization Type - Displays the authorization service.
◆
Method Name - Displays the user-defined or default accounting method.
◆
Server Group Name - Displays the authorization server group.
◆
Interface - Displays the console or Telnet interface to which these rules apply.
(This field is null if the authorization method and associated server group has
not been assigned to an interface.)
– 238 –
225). Any other