beautypg.com

The tacacs+ functions implemented by 3com routers, Tacacs+ configuration tasks, 4 tacacs+ configuration tasks – 3Com 10014303 User Manual

Page 19

background image

User

HWTACACS

Client

HWTACACS

Server

User logs in

Authentication Start Request packet

Authentication response packet,

requesting for the user name

Request User for the user name

User enters the user name

Authentication continuance packet

carrying the user name

Authentication response packet,

requesting for the password

Request User for the password

User enters the password

Authentication continuance packet

carrying the password

Authentication success packet

Authorization request packet

Authorization success packet

User is permitted

Accounting start request packet

Accounting start response packet

User quits

Accounting stop packet

Accounting stop response packet

User

HWTACACS

Client

HWTACACS

Server

User logs in

Authentication Start Request packet

Authentication response packet,

requesting for the user name

Request User for the user name

User enters the user name

Authentication continuance packet

carrying the user name

Authentication response packet,

requesting for the password

Request User for the password

User enters the password

Authentication continuance packet

carrying the password

Authentication success packet

Authorization request packet

Authorization success packet

User is permitted

Accounting start request packet

Accounting start response packet

User quits

Accounting stop packet

Accounting stop response packet

Figure 2-3 The flow of implementing AAA for a telnet user

2.3 The TACACS+ Functions Implemented by 3Com Routers

3Com Routers support the following TACACS+ functions:

1) AAA on login users (including console, Telnet, dumb terminal, PAD, terminal

accessing, and FTP users)

2)

AAA on PPP users

3)

AAA on VPDN users (L2TP is used in this case)

2.4 TACACS+ Configuration Tasks

Basic TACACS+ configuration tasks include:

Create a TACACS+ server group

Add the TACACS+ server into a TACACS+ server group

High-level TACACS+ configuration tasks include:

3Com Router Configuration Guide Addendum for V1.20

19

See also other documents in the category 3Com Hardware: