40 ESR Series Routers Operation Manual
Solution:
Configure connection to RADIUS server and specify the key (password):
esr# configure
esr(config)# radius-server host 192.168.16.1
esr(config-radius-server)# key ascii-text encrypted 8CB5107EA7005AFF
esr(config-radius-server)# exit
Create authentication profile:
esr(config)# aaa authentication login log radius
Specify authentication mode used for Telnet protocol connection:
esr(config)# line telnet
esr(config-line-telnet)# login authentication log
esr(config-line-telnet)# exit
esr(config)# exit
Configuration changes will take effect when the configuration is applied:
esr# commit
Configuration has been successfully committed
esr# confirm
Configuration has been successfully confirmed
esr#
To view the information on RADIUS server connection settings, use the following command:
esr# show aaa radius-servers
To view the authentication profiles, use the following command:
esr# show aaa authentication
7.4 Command privilege configuration
Command privilege configuration is a flexible tool that allows you to assign baseline user privilege
level (1–15) to a command set. In future, you may specify privilege level during user creation which will
define a command set available to them.
Levels 1-9 enable all monitoring commands (show …).
Levels 10-14 enable all commands except for device reboot, user management and other
specific commands.
Level 15 enables all monitoring commands.
Objective: Transfer all interface information display commands to the privilege level 10 except for
'show interfaces bridges' command. Transfer 'show interfaces bridges' command to the privilege level 3.
Solution:
In configuration mode, identify commands enabled for operation under privilege level 10 and
privilege level 3.
To Next Page
Loading...
