Securing Access to Management Functions
December 2000 3 - 35
User logs in using Telnet/SSH Login authentication:
aaa authentication login default <method-list>
EXEC accounting Start:
aaa accounting exec default start-stop <method-list>
System accounting Start:
aaa accounting system default start-stop <method-list>
User logs into the Web management
interface
Web authentication:
aaa authentication web-server default <method-list>
User logs out of Telnet/SSH session Command authorization for logout command:
aaa autho
rizati
on comma
nds <priv
ilege-
level> def
ault <meth
od-list
>
Command accounting:
aaa acc
ounting c
ommand
s <priv
ilege-le
vel> defa
ult sta
rt-stop
<method-list>
EXEC accounting stop:
aaa accounting exec default start-stop <method-list>
User enters system commands
(for example, reload, boot system)
Command authorization:
aaa autho
rizati
on comma
nds <priv
ilege-
level> def
ault <meth
od-list
>
Command accounting:
aaa acc
ounting c
ommand
s <priv
ilege-le
vel> defa
ult sta
rt-stop
<method-list>
System accounting stop:
aaa accounting system default start-stop <method-list>
User enters the command:
[no] aaa accounting system default
start-stop <method-list>
Command authorization:
aaa autho
rizati
on comma
nds <priv
ilege-
level> def
ault <meth
od-list
>
Command accounting:
aaa acc
ounting c
ommand
s <priv
ilege-le
vel> defa
ult sta
rt-stop
<method-list>
System accounting start:
aaa accounting system default start-stop <method-list>
User enters other commands Command authorization:
aaa autho
rizati
on comma
nds <priv
ilege-
level> def
ault <meth
od-list
>
Command accounting:
aaa acc
ounting c
ommand
s <priv
ilege-le
vel> defa
ult sta
rt-stop
<method-list>
User Action Applicable AAA Operations
To Next Page
Loading...
