Apcon switch authorization, Pcon, Switch authorization – MultiDyne ACI-2058 User Manual
Page 192
Appendix C: Configuring the TACACS+ Server
A54-3000-100 A
153
A
PCON
, Inc.
This snippet of the TACACS+ Server Configuration file includes
apcon
permission in the
group description:
11.2.0.3.
A
PCON
Switch Authorization
You can use the
permit
and
deny
attributes to assign different authorization levels on
different switches.
This snippet of TACACS+ Server Configuration file defines access for the user
phineas
:
The code defines the following access for
phineas
:
•
Administrator access on the A
PCON
switch with a primary IP address of 10.1.108.0.
•
Advanced access on any other A
PCON
switch with a 10.1.108.* primary IP address.
•
Basic access on any other A
PCON
switch, as a member of the
user
group.
group = user {
service = shell {}
cmd = apcon_basic {
permit .*
}
}
user = lois {
login = des 5EFj8xcpfXY8U
member = user
}
user = jimmy {
login = cleartext "jimmy-pw"
member = user
}
group = user {
service = shell {}
cmd = apcon_basic {
permit .*
}
}
user = phineas {
service = shell {}
login = cleartext "phineas-pw"
cmd = apcon_admin {
permit 10\.1\.108\.0
}
cmd = apcon_adv {
permit 10\.1\.108\.[0-9]*
}
member = user
}