ESR series service routers.ESR-Series. User manual
•
•
•
•
•
•
•
•
•
Step Description Command Keys
9 Specify the interface or tunnel of
the router whose IPv4/IPv6
address will be used as the
source IPv4/IPv6 address in
outgoing TACACS packets.
esr(config-tacacs-server)#
source-interface { <IF> | <TUN> }
<IF> – interface specified in form
given in theTypes and naming
procedure of router interfaces
section of CLI command reference
guide.
<TUN> – tunnel name specified in
form given in the Types and naming
procedure of router tunnels section.
10 Set TACACS as authentication
method of user privileges
elevation.
esr(config)# aaa authentication
enable <NAME><METHOD 1>
[ <METHOD 2> ] [ <METHOD 3> ]
[ <METHOD 4> ]
<NAME> – list name, set by the
string of up to 31 characters;
default – default list name.
<METHOD> – authentication
methods:
enable – authentication by
enable passwords;
tacacs – authentication by
TACACS;
radius – authentication by
RADIUS;
ldap – authentication by
LDAP.
11 Set the method for iterating over
authentication methods
(optional).
esr(config)# aaa authentication
mode <MODE>
<MODE> – options of iterating over
methods:
chain – if the server returned
FAIL, proceed to the following
authentication method in the
chain;
break – if the server returned
FAIL, abandon authentication
attempts. If the server is
unavailable, continue
authentication attempts by
the following methods in the
chain.
Default value: chain.
12 Configure the list of CLI
commands accounting methods
(optional).
esr(config)# aaa accounting
commands stop-only tacacs
13 Configure tacacs in the list of
user session accounting
methods (optional).
esr(config)# aaa accounting login
start-stop <METHOD 1>
[ <METHOD 2> ]
<METHOD> – accounting methods:
tacacs – session accounting
by TACACS;
radius – session accounting
by RADIUS.
To Next Page
Loading...