Server Technology PT22 Spécifications télécharger pdf (Page 112)

112  Advanced Operations

Installation and Operations Manual

Members of the TACACS privilege level 1 account can access the following outlets, outlet groups and

serial ports: outlet A1 which has a descriptive name of DataServer_1, outlet A2 which has a descriptive

name of WebServer_1, group ServerGroup_1 group ServerGroup_2 and Console serial port.

TACACS+ Technical Specifications

Authentication START Packet includes:

action = 1 (TAC_PLUS_AUTHEN_LOGIN)

priv_lvl = 0 (TAC_PLUS_PRIV_LVL_MIN)

authen_type = 1 (TAC_PLUS_AUTHEN_TYPE_ASCII)

service = 1 (TAC_PLUS_AUTHEN_SVC_LOGIN)

user = (entered username)

port = (access path into the PT22)

rem_addr = ‘Sentry3_xxxxxx’ (xxxxxx is last six digits of MAC address)

data = ‘‘ (null)

NOTE: The password is sent in a CONTINUE packet.

Authorization REQUEST Packet includes:

authen_method = 6 (TAC_PLUS_AUTHEN_METH_TACACSPLUS)

priv_lvl = 0 (TAC_PLUS_PRIV_LVL_MIN)

authen_type = 1 (TAC_PLUS_AUTHEN_TYPE_ASCII)

authen_service = 1 (TAC_PLUS_AUTHEN_SVC_LOGIN)

user = (entered username)

port = (access path into the PT22)

rem_addr = ‘Sentry3_xxxxxx’ (xxxxxx is last six digits of Ethernet MAC address)

service = ‘shell’ (for exec)

cmd = ‘‘ (null)

NOTE: The access paths into the PT22 which support TACACS+ are ‘Console’, ‘Telnet’, ‘SSH’, ‘HTTP’ and

‘HTTPS’. In the case of ‘Console’ and ‘Modem’, an administrator is allowed to rename these ports in which case the

assigned name is used.

1 2 ... 107 108 109 110 111 112 113 114 115 116 117 ... 131 132

Pas de commentaire

Server Technology PT22 Spécifications Page 112