beautypg.com

Brocade Multi-Service IronWare Security Configuration Guide (Supporting R05.6.00) User Manual

Page 50

background image

32

Multi-Service IronWare Security Configuration Guide

53-1003035-02

Configuring TACACS or TACACS+ security

1

User action

Applicable AAA operations

User attempts to gain access to the
Privileged EXEC and CONFIG levels of the CLI

Enable authentication:
aaa authentication enable default method-list

Exec authorization (TACACS+):
aaa authorization exec default tacacs+

System accounting start (TACACS+):
aaa accounting system default start-stop method-list

User logs in using console, Telnet, or SSH

Login authentication:
aaa authentication login default method-list

Exec authorization (TACACS+):
aaa authorization exec default tacacs+

Exec accounting start (TACACS+):
aaa accounting exec default method-list
System accounting start (TACACS+):
aaa accounting system default start-stop method-list

User logs into the Web Management
Interface

Web authentication:
aaa authentication web-server default method-list

Exec authorization (TACACS+):
aaa authorization exec default tacacs+

User logs out of console, Telnet, or SSH
session

Command accounting (TACACS+):
aaa accounting commands privilege-level default start-stop
method-list
EXEC accounting stop (TACACS+):
aaa accounting exec default start-stop method-list

User enters system commands
(for example, reload, boot system)

Command authorization (TACACS+):
aaa authorization commands privilege-level default method-list

Command accounting (TACACS+):
aaa accounting commands privilege-level default start-stop
method-list
System accounting stop (TACACS+):
aaa accounting system default start-stop method-list

User enters the command:
[no] aaa accounting system default
start-stop method-list

Command authorization (TACACS+):
aaa authorization commands privilege-level default method-list

Command accounting (TACACS+):
aaa accounting commands privilege-level default start-stop
method-list
System accounting start (TACACS+):
aaa accounting system default start-stop method-list

User enters other commands

Command authorization (TACACS+):
aaa authorization commands privilege-level default method-list

Command accounting (TACACS+):
aaa accounting commands privilege-level default start-stop
method-list

See also other documents in the category Brocade Computer Accessories: