Configuring aaa authorization, Figure 173 dis – Brocade Communications Systems Brocate Ethernet Access Switch 6910 User Manual
Page 882
832
Brocade 6910 Ethernet Access Switch Configuration Guide
53-1002581-01
AAA Authentication, Authorization and Accounting
41
To display basic accounting information and statistics recorded for user sessions:
1. Click Security, AAA, Accounting.
2. Select Show Information from the Step list.
3. Click Statistics.
FIGURE 173
Displaying Statistics for AAA Accounting Sessions
Configuring AAA Authorization
Use the Security > AAA > Authorization page to enable authorization of requested services, and
also to display the configured authorization methods, and the methods applied to specific
interfaces.
CLI References
•
Command Usage
•
This feature performs authorization to determine if a user is allowed to run an Exec shell.
•
AAA authentication through a RADIUS or TACACS+ server must be enabled before authorization
is enabled.
Parameters
These parameters are displayed:
Configure Method
•
Authorization Type – Specifies the service as Exec, indicating administrative authorization for
local console, Telnet, or SSH connections.
•
Method Name – Specifies an authorization method for service requests. The “default” method
is used for a requested service if no other methods have been defined. (Range: 1-64
characters)
•
Server Group Name - Specifies the authorization server group. (Range: 1-64 characters)
The group name “tacacs+” specifies all configured TACACS+ hosts (see
Local/Remote Logon Authentication”
on page 822). Any other group name refers to a server
group configured on the TACACS+ Group Settings page. Authorization is only supported for
TACACS+ servers.
Configure Service
•
Console Method Name – Specifies a user defined method name to apply to console
connections.