Security Management
361
Managed Switches
5. Verify that EXEC authorization is set up for Telnet.
6. Using Linux on the TACACS server, configure an encryption key for the TACACS server in
the file tac_plus.conf.
7. Using Linux on the TACACS server, allow a user named eric to access privileged EXEC
mode directly as defined in the file tac_plus.conf.
(Netgear Switch) #show authorization methods
Command Authorization Method Lists
-------------------------------------
dfltCmdAuthList : none
commandlist : tacacs
Line Command Method List
--------- ---------------------
Console dfltCmdAuthList
Telnet dfltCmdAuthList
SSH dfltCmdAuthList
Exec Authorization Method Lists
-------------------------------------
dfltExecAuthList : none
execList : tacacs
Line Exec Method List
--------- ---------------------
Console dfltExecAuthList
Telnet execList
SSH dfltExecAuthList
key = "12345678"
accounting syslog;
accounting file = /var/log/tac_plus/tac_plus.acct
user = eric {
# member = network_user {
default service = permit
login = des qbVVseTcbtzS2
service = exec {
priv-lvl = 15
}
To Next Page
Loading...
