System Management Guide Security
Edition: 01 3HE 11018 AAAC TQZZA 25
3.1.3.2 TACACS+ Accounting
The 7705 SAR allows you to configure the type of accounting record packet that is
to be sent to the TACACS+ server when specified events occur on the device. The
accounting record-type parameter indicates whether TACACS+ accounting start
and stop packets will be sent or just stop packets will be sent. A start packet is sent
to a TACACS+ server when an authenticated user establishes a Telnet or SSH
session and a stop packet is sent when the user logs out.
When a user logs in to request access to the network using Telnet or SSH, or a user
enters a command for which accounting parameters are configured, or a system
event occurs, such as a reboot or a configuration file reload, the 7705 SAR checks
the configuration to see if TACACS+ accounting is required for the particular event.
If TACACS+ accounting is required, then, depending on the accounting record type
specified, the device sends a start packet to the TACACS+ accounting server that
contains information about the event.
The TACACS+ accounting server acknowledges the start packet and records
information about the event. When the event ends, the device sends a stop packet.
The stop packet is acknowledged by the TACACS+ accounting server.
To Next Page
Loading...
