Password Commands
Page 150 7450 ESS System Mangement Guide
no tacplus-map-to-priv-lvl
Context config>system>security>password>enable-admin-control
Description When tacplus-map-to-priv-lvl is enabled, and tacplus authorization is enabled with the use-priv-lvl
option, typing enable-admin starts an interactive authentication exchange from the SR OS node to
the TACACS+ server. The start message (service=enable) contains the user-id and the requested
admin-priv-lvl. Successful authentication results in the use of a new profile (as configured under con-
fig>system>security>tacplus>priv-lvl-map).
health-check
Syntax [no] health-check [interval interval]
Context config>system>security>password
Description This command specifies that RADIUS and TACACS+ servers are monitored for 3 seconds each at 30
second intervals. Servers that are not configured will have 3 seconds of idle time. If in this process a
server is found to be unreachable, or a previously unreachable server starts responding, based on the
type of the server, a trap will be sent.
The no form of the command disables the periodic monitoring of the RADIUS and TACACS+ serv-
ers. In this case, the operational status for the active server will be up if the last access was successful.
Default health-check 30
Parameters interval interval — Specifies the polling interval for RADIUS servers.
Values 6 — 1500
history
Syntax history size
no history
Context config>system>security>password
Description Configure how many previous passwords a new password is matched against.
Default no history
Parameters size — Specifies how many previous passwords a new password is matched against.
Values 1—20
To Next Page
Loading...
