Dell PowerConnect B-FCXs Configuration Manual page 1219

Powerconnect b-series fcx

Hide thumbs Also See for PowerConnect B-FCXs:

Hardware installation manual (86 pages)

User manual (152 pages)

Getting started manual (260 pages)

Table of Contents

service = exec {

The attribute name in the A-V pair is not significant; the Dell PowerConnect device uses the last one

that has a numeric value. However, the Dell PowerConnect device interprets the value for a

non-"foundry-privlvl" A-V pair differently than it does for a "foundry-privlvl" A-V pair. The following

table lists how the Dell PowerConnect device associates a value from a non-"foundry-privlvl" A-V

pair with a Dell PowerConnect privilege level.

Value for non-"foundry-privlvl" A-V pair

Any other number or 0

In the example above, the A-V pair configured for the Exec service is privlvl = 15. The Dell

device uses the value in this A-V pair to set the user privilege level to 0 (super-user), granting the

user full read-write access.

In a configuration that has both a "foundry-privlvl" A-V pair and a non-"foundry-privlvl" A-V pair for

the Exec service, the non-"foundry-privlvl" A-V pair is ignored.

default service = permit

member admin

#Global password

global = cleartext "cat"

service = exec {

In this example, the user would be granted a privilege level of 4 (port-config level). The privlvl =

15 A-V pair is ignored by the Dell PowerConnect device.

If the TACACS+ server has no A-V pair configured for the Exec service, the default privilege level of 5

(read-only) is used.

Configuring command authorization

When TACACS+ command authorization is enabled, the Dell PowerConnect device consults a

TACACS+ server to get authorization for commands entered by the user.

You enable TACACS+ command authorization by specifying a privilege level whose commands

require authorization. For example, to configure the Dell PowerConnect device to perform

authorization for the commands available at the Super User privilege level (that is, all commands

on the device), enter the following command.

PowerConnect(config)#aaa authorization commands 0 default tacacs+

Syntax: aaa authorization commands <privilege-level> default tacacs+ | radius | none

The <privilege-level> parameter can be one of the following:

PowerConnect B-Series FCX Configuration Guide

53-1002266-01

privlvl = 15

Dell equivalents for non-"foundry-privlvl" A-V pair values

foundry-privlvl = 4

privlvl = 15

Configuring TACACS/TACACS+ security

Dell privilege level

0 (super-user)

4 (port-config)

5 (read-only)

Troubleshooting

Dell PowerConnect B-FCXs Configuration Manual page 1219

Troubleshooting

Related Manuals for Dell PowerConnect B-FCXs

Related Products for Dell PowerConnect B-FCXs

This manual is also suitable for:

Table of Contents