MES53xx, MES33xx, MES23xx Ethernet Switch Series 121
ip http authentication aaa
login-authentication
[loginauthorization]
[http | https] method_list
method_list: (local, none,
tacacs, radius)
Determines the authentication method when accessing HTTP
server. When the method list is installed, the additional
method will be applied only in case when error is returned to
the basic authentication method.
- method_list – authentication method:
local – by name from the local data base;
none – it is not used;
tacacs – use lists of all the TACACS+ servers;
radius – use lists of all the RADIUS servers.
no ip http authentication
aaa login-authentication
aaa accounting commands
stop-only group tacacs+
-/by default, accounting the
commands is disabled
Enable accounting CLI commands via TACACS+ protocol.
no aaa accounting
commands stop-only group
To grant the client access to the device, even if all authentication methods failed, use the
'none' method.
Table 5.115. RADIUS protocol accounting message attributes for control sessions
Attribute
presence in
Start message
Attribute
presence in
Stop message
The IP address of the switch used for Radius
server sessions.
An arbitrary value included in all session
accounting messages.
The IP address of the switch used for control
sessions.
Unique accounting identifier.
Specify the method for client authentication.
Show how long the user is connected to the
system.
Acct-Terminate-Cause (49)
The reason why the session is closed.
Table 5.116. RADIUS protocol accounting message attributes for 802.1x sessions
Attribute
presence in
Start message
Attribute
presence in
Stop message
The IP address of the switch used for Radius
server sessions.
The switch port the user is connected to.
An arbitrary value included in all session
accounting messages.
IP address of the switch.
Unique accounting identifier.
Specify the method for client authentication.
Show how long the user is connected to the
system.
To Next Page
Loading...
Need help?
General
