Kentrox AI296 User Manual

AI296 Version 9.8x User’s Guide

AI296 Commands: aaa

9-10

Command Defaults

Disabled TACACS+ accounting, authenitcation, and authorization

Examples

The following AAA settings are configured:

z

Enabled TACACS+ fallback

z

Enabled AAA accounting

z

Enabled AAA authentication on

telnet

connections

z

priv-lvl

authorization

z

Custom profile

newProf

with TACACS+ privilege levels

3

to

5

z

Enabled TACACS+ authentication for AsyncPPP links

1

to

9

z

10

retry attempts

z

15

second timeout.

stat

Displays or clears AAA specific counters and statistics. The following
parameter is accepted:

clear

—Clears all counters and statistics.

summary

Displays a summary of all authentication, authorization, and accounting
settings.

timeout

Configures the number of seconds to wait for a response from a
TACACS+ server. If no response is received from the server in the
allowed number of seconds, the connection attempt fails. The following
parameters are accepted:

z

timeout_value

—Defines how long (in seconds) AI296 will wait for

a response from a TACACS+ server when a connection attempt is
made. Valid values are 1 to 120.

z

default

—Resets the timeout value to its default.

[296] aaa fallback enable
[296] aaa account enable
[296] aaa authen enable telnet

WARNING: Potential lock-out:
At least one TACACS+ server must be enabled for Authentication
AND at least one TACACS+ server must be enabled for Authorization.
[296] aaa author priv-lvl
[296] aaa profile 3-5 newProf
[296] aaa ppp authen 1-9 enable
[296] aaa retry 10
[296] aaa timeout 15
[296]