Securing Access to Management Functions
December 2000 3 - 29
The show web command displays the privilege level of Web management interface users. For example:
ServerIron(config)#show web
User Privilege IP address
set 0 192.168.1.234
Syntax: show web
USING THE WEB MANAGEMENT INTERFACE
To configure TACACS/TACACS+ using the Web management interface:
1. Log on to the device using a valid user name and password for read-write access. The System configuration
panel is displayed.
2. If you configuring TACACS/TACACS+ authentication for Telnet access to the CLI, go to step 3. Otherwise, go
to step 7.
3. Select the Management
link to display the Management configuration panel.
4. Select Enable next to Telnet Authentication. You must enable Telnet authentication if you want to use
TACACS/TACACS+ or RADIUS to authenticate Telnet access to the device.
5. Click Apply to apply the change.
6. Select the Home
link to return to the System configuration panel.
7. Select the TACACS
link from the System configuration panel to display the TACACS panel.
8. If needed, change the Authentication port and Accounting port. (The default values work in most networks.)
9. Enter the key if applicable.
NOTE: The key parameter applies only to TACACS+ servers, not to TACACS servers. If you are configuring
for TACACS authentication, do not configure a key on the TACACS server and do not enter a key on the
Foundry device.
10. Click Apply if you changed any TACACS/TACACS+ parameters.
11. Select the TACACS Server link.
• If any TACACS/TACACS+ servers are already configured on the device, the servers are listed in a table.
Select the Add TACACS Server link to display the following panel.
• If the device does not have any TACACS servers configured, the following panel is displayed.
Tacacs+ Server For each TACACS/TACACS+ server, the IP address, port, and the following
statistics are displayed:
opens Number of times the port was opened for communication with the
server
closes Number of times the port was closed normally
timeouts Number of times port was closed due to a timeout
errors Number of times an error occurred while opening the port
packets in Number of packets received from the server
packets out Number of packets sent to the server
connection The current connection status. This can be “no connection” or “connection active”.
Table 3.3: Output of the show aaa command for TACACS/TACACS+
Field Description
To Next Page
Loading...
Need help?
General
