Commands
aaa authentication login privilege-mode
aaa authorization commands <privilege-level> default
tacacs+ | none
aaa authorization exec default tacacs+ | none
enable aaa console
show aaa
tacacs-server dead-time <number>
tacacs-server host <ip-addr> | <server-name> [auth-port
<number> [authentication-only | authorization-only |
accounting-only | default] [key <string>]]
tacacs-server key [0 | 1] <string>
tacacs-server retransmit <number>
tacacs-server timeout <number>
Telnet access
Commands
telnet access-group <num> | <name>
telnet client <ip-addr>
telnet login-retries <number>
telnet server enable vlan <vlan-id>
telnet server
suppress-reject-message
telnet-server
TFTP access
Commands
tftp client enable vlan <vlan-id>
BigIron RX Series Configuration Guide
53-1001810-01
Security/management
See ...
"Entering privileged EXEC mode after a Telnet or SSH
login"
on page 89
"Configuring command authorization"
"Configuring Exec authorization"
"AAA support for console commands"
"Displaying TACACS/TACACS+ statistics and
configuration information"
on page 95
"Setting the dead time parameter"
"Specifying different servers for individual AAA
functions"
on page 86
"Setting the TACACS+ key"
on page 87
"Setting the retransmission limit"
"Setting the timeout parameter"
See ...
"Using an ACL to restrict Telnet access"
"Restricting Telnet access to a specific IP address"
page 67
"Specifying the maximum number of login attempts
for Telnet access"
on page 68
"Restricting Telnet access to a specific VLAN"
page 68
"Suppressing Telnet connection rejection messages"
on page 71
"Disabling Telnet access"
on page 70
See ...
"Restricting TFTP access to a specific VLAN"
page 69
E
on page 91
on page 89
on page 92
on page 87
on page 87
on page 88
on page 64
on
on
on
1349