vi BigIron RX Series Configuration Guide
53-1002253-01
Configuring TACACS and TACACS+ security . . . . . . . . . . . . . . . . . . . . 82
How TACACS+ differs from TACACS. . . . . . . . . . . . . . . . . . . . . . .83
TACACS and TACACS+ authentication, authorization,
and accounting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .83
TACACS and TACACS+ configuration considerations . . . . . . . . .86
Enabling SNMP to configure TACACS and TACACS. . . . . . . . . . . 87
Identifying the TACACS and TACACS+ servers . . . . . . . . . . . . . . 88
Specifying different servers for individual AAA functions . . . . .88
Setting optional TACACS and TACACS+ parameters . . . . . . . . .89
Configuring authentication-method lists for TACACS
and TACACS+ . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .90
Configuring TACACS+ authorization . . . . . . . . . . . . . . . . . . . . . .92
Configuring TACACS+ accounting . . . . . . . . . . . . . . . . . . . . . . . .95
Configuring an interface as the source for all TACACS
and TACACS+ packets . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 96
Displaying TACACS and TACACS+ statistics and
configuration information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 97
Configuring RADIUS security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .98
RADIUS authentication, authorization, and accounting . . . . . .98
RADIUS configuration considerations. . . . . . . . . . . . . . . . . . . .101
RADIUS configuration procedure . . . . . . . . . . . . . . . . . . . . . . .102
Configuring Brocade-specific attributes on the
RADIUS server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .102
Enabling SNMP to configure RADIUS . . . . . . . . . . . . . . . . . . . .103
Identifying the RADIUS server to the BigIron RX . . . . . . . . . . .104
Specifying different servers for individual AAA functions . . . .104
Setting RADIUS parameters . . . . . . . . . . . . . . . . . . . . . . . . . . .104
Configuring authentication-method lists for RADIUS. . . . . . . .105
Configuring RADIUS authorization . . . . . . . . . . . . . . . . . . . . . .107
Configuring RADIUS accounting . . . . . . . . . . . . . . . . . . . . . . . .109
Configuring an interface as the source for all RADIUS
packets . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .110
Displaying RADIUS configuration information . . . . . . . . . . . . .110
Configuring authentication-method lists . . . . . . . . . . . . . . . . . . . . .112
Configuration considerations for authentication-
method lists . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .113
Examples of authentication-method lists. . . . . . . . . . . . . . . . .113
Chapter 5 Configuring Basic Parameters
Entering system administration information . . . . . . . . . . . . . . . . . .117
Configuring Simple Network Management Protocol traps . . . . . . .118
Specifying an SNMP trap receiver . . . . . . . . . . . . . . . . . . . . . .118
Specifying a Single trap source. . . . . . . . . . . . . . . . . . . . . . . . .119
Setting the SNMP Trap holddown time. . . . . . . . . . . . . . . . . . .119
Disabling SNMP traps . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .120
Disabling Syslog messages and traps for CLI access . . . . . . .121
Configuring an interface as source for all Telnet packets . . . . . . .122
Cancelling an outbound Telnet session . . . . . . . . . . . . . . . . . .123
Configuring an interface as the source for all TFTP packets . . . . .123
To Next Page
Loading...
Need help?
General