Authorization and accounting – Brocade Virtual ADX MIB Reference (Supporting ADX v03.1.00) User Manual
Page 48
36
Brocade Virtual ADX MIB Reference
53-1003312-01
Authorization and accounting
•
aaa authentication login default TACACS+
•
aaa authentication enable default TACACS+
•
aaa authentication enable implicit-user
The snAgGblPassword object must be set for the following objects:
•
snAgCfgLoad
•
snAgImgLoad
•
snAgConfigFromNVRAM
•
snAgEraseNVRAM
•
snAgWriteNVRAM
•
snAgGblTelnetPassword
•
snAgReload
•
snAgSystemLog
Authorization and accounting
The following objects are for authorization, and accounting functions.
Name, OID, and Syntax
Access
Description
snAuthorizationCommand Methods
brcdIp.1.1.3.15.2.1
Syntax: OctetString
Read-write
Specifies the sequence of authorization methods.
This object can have zero to three octets. Each octet
represents a method to authorize the user command. Each
octet has the following value:
•
radius(2) – Authorize by the requesting RADIUS server
•
tacplus(5) – Authorize by requesting TACACS server
•
none(6) – Skip authorization
Setting a zero length octet string invalidates all previous
authorization methods.
snAuthorizationCommandLevel
brcdIp.1.1.3.15.2.2
Syntax: IpAddress
Read-write
Specifies the commands that need to be authorized. Any
command that is equal to or less than the selected level will
be authorized:
•
level(0) – Privilege level 0
•
level(4) – Privilege level 4
•
level(5) – Privilege level 5
snAuthorizationExec
brcdIp.1.1.3.15.2.3
Syntax: OctetString
Read-write
Shows the sequence of authorization methods for exec
programs.
This object can have zero to three octets. Each octet
represents a method for Telnet or SSH login authorization.
Each octet can have one of the following values:
•
radius(2) – Send EXEC authorization request to RADIUS
server
•
tacplus(5) – Send EXEC authorization request to
TACACS+ server
•
none(6) – No EXEC authorization method
Setting a zero length octet string invalidates all authorization
methods.