Table of Contents
Advertisement
Authorization
Authorization is the action of determining a user's privileges on the device, and usually takes
place after authentication.
The default mapping between TACACS+ authorization levels and Alteon OS management
access levels is shown in
server.
Table 1-4 Default TACACS+ Authorization Levels
user
oper
admin
Alternate mapping between TACACS+ authorization levels and Alteon OS management
access levels is shown in
to use the alternate TACACS+ authorization levels.
Table 1-5 Alternate TACACS+ Authorization Levels
user
oper
admin
If the remote user is successfully authenticated by the authentication server, the switch verifies
the privileges of the remote user and authorizes the appropriate access. The administrator has
an option to allow backdoor access via Telnet (/cfg/sys/tacacs/telnet). The default
value for Telnet access is disabled. The administrator also can enable secure backdoor
(/cfg/sys/tacacs/secbd), to allow access if both the primary and the secondary
TACACS+ servers fail to respond.
N
– To obtain the TACACS+ backdoor password for your GbESM, contact your IBM
OTE
Service and Support line.
42C4911, January 2007
Table
Alteon OS User Access Level
Table
Alteon OS User Access Level
1-4. The authorization levels must be defined on the TACACS+
TACACS+ level
0
3
6
1-5. Use the command /cfg/sys/tacacs/cmap ena
TACACS+ level
0 - 1
6 - 8
14 - 15
Alteon OS Application Guide
Chapter 1: Accessing the Switch
49
Advertisement
Table of Contents
Troubleshooting
