Kentrox AI296 User Manual
Page 268
AI296 Version 9.8x User’s Guide
AI296 Commands: aaa
9-10
Command Defaults
Disabled TACACS+ accounting, authenitcation, and authorization
Examples
The following AAA settings are configured:
z
Enabled TACACS+ fallback
z
Enabled AAA accounting
z
Enabled AAA authentication on
telnet
connections
z
priv-lvl
authorization
z
Custom profile
newProf
with TACACS+ privilege levels
3
to
5
z
Enabled TACACS+ authentication for AsyncPPP links
1
to
9
z
10
retry attempts
z
15
second timeout.
stat
Displays or clears AAA specific counters and statistics. The following
parameter is accepted:
clear
—Clears all counters and statistics.
summary
Displays a summary of all authentication, authorization, and accounting
settings.
timeout
Configures the number of seconds to wait for a response from a
TACACS+ server. If no response is received from the server in the
allowed number of seconds, the connection attempt fails. The following
parameters are accepted:
z
timeout_value
—Defines how long (in seconds) AI296 will wait for
a response from a TACACS+ server when a connection attempt is
made. Valid values are 1 to 120.
z
default
—Resets the timeout value to its default.
[296] aaa fallback enable
[296] aaa account enable
[296] aaa authen enable telnet
WARNING: Potential lock-out:
At least one TACACS+ server must be enabled for Authentication
AND at least one TACACS+ server must be enabled for Authorization.
[296] aaa author priv-lvl
[296] aaa profile 3-5 newProf
[296] aaa ppp authen 1-9 enable
[296] aaa retry 10
[296] aaa timeout 15
[296]