Brocade Communications Systems 6910 manual Authorization and accounting, Radius general group

Page 44

Authorization and accounting

Authorization and accounting

The following objects are for authorization, and accounting functions.

Name, Identifier, and Syntax

Access

Description

 

 

 

snAuthorizationExec

Read-write

Shows the authorization method for exec programs. This object

brcdIp.1.1.3.15.2.3

 

can have zero to one octet. The octet represents a method for

Syntax: OctetString

 

Telnet or SSH login authorization. The octet can have one of the

 

 

following values:

 

 

tacplus(5) – Send EXEC authorization request to TACACS+

 

 

server

 

 

none(6) – No EXEC authorization method

 

 

Setting a zero length octet string invalidates all authorization

 

 

methods.

 

 

 

snAccountingExec

Read-write

Shows the accounting method for exec programs. This object

brcdIp.1.1.3.15.3.3

 

can have zero to one octet. The octet represents a method for

Syntax: OctetString

 

Telnet or SSH login accounting. The octet can have one of the

 

 

following values:

 

 

radius(2) – Send accounting information to the RADIUS

 

 

server

 

 

tacplus(5) – Send accounting information to the TACACS+

 

 

server

 

 

none(6) – No accounting method

Setting a zero length octet string invalidates all accounting methods.

RADIUS general group

You can use a Remote Authentication Dial In User Service (RADIUS) server to secure the following types of access to the switch or router:

Telnet access

SSH access

Web management access

Access to the Privileged EXEC level and CONFIG levels of the CLI

The following objects provide information on RADIUS authentication.

Name, Identifier, and Syntax

Access

Description

 

 

 

snRadiusGeneral

 

 

brcdIp.1.1.3.12.1

 

 

 

 

 

snRadiusRetransmit

Read-write

Indicates the number of authentication query retransmissions

brcdIp.1.1.3.12.1.3

 

that can be sent to the RADIUS server.

Syntax: Integer

 

Valid values: 1 – 30

 

 

Default: 2

 

 

 

snRadiusTimeOut

Read-write

Specifies the number of seconds to wait for authentication reply

brcdIp.1.1.3.12.1.4

 

from the RADIUS server.

Syntax: Integer

 

Valid values: 1 – 65535

 

 

Default: 5

32

Brocade 6910 Ethernet Access Switch MIB Reference

 

53-1002582-01

Image 44
Contents Brocade 6910 Ethernet Access Switch Brocade Communications Systems, Incorporated Document History Brocade 6910 Ethernet Access Switch MIB Reference Contents Chapter Registration Physical Properties of a Device Chapter MAC-Based Vlan MIB Variable Index Supported hardware and software About This DocumentThis chapter Text formatting Document conventionsRelated publications Getting technical help Document feedback Page Obtaining and installing the Brocade 6910 MIBs Overview of the Brocade 6910 MIBIntroduction Downloading the MIB from Technical Support web siteReloading MIBs into a third-party NMS Standard objectsProprietary objects Object Group Name Object Identifier Sections to Refer To Structure of this guide Structure of this guideSNMPv3 support RFC compliance management Supported on Brocade 6910 switchesSupported Standard MIBs Ieee standards Lldp MIB supportPartially supported standards Following groups are supported on Brocade 6910 switches RFC 1213 Management Information Base MIB-IIRFC 1493 Definitions of managed objects for bridges RFC 1611 DNS Server MIB extensionsRFC 1612 DNS Resolver MIB Extensions Following groups are supported on Brocade 6910 switches RFC 2096 IP forwarding table MIB RFC 2576 Snmp Community MIBRFC 2737 Entity MIB, Version RFC 2737 Entity MIB, VersionRFC 2863 Interfaces Group MIB RFC 2925 Ping MIBRFC 2925 Remote Trace MIB RFC 3636 Ieee 802.3 Medium Attachment Units MAU MIB RFC 3413 Snmp Notification MIBRFC 3635 Ethernet-like interface types Ieee 802.1ag Connectivity Fault Management CFM MIB RFC 4878 OAM Functions on Ethernet-Like Interfaces MIB Dot3OamDyingGaspEnable Dot3OamEventLogTable RFC 4878 OAM Functions on Ethernet-Like Interfaces MIB Registration Object Name and Identifier DescriptionRegistration Power supply Physical Properties of a DeviceCommon objects BoardsPower supply table TemperatureGeneral chassis Common objectsBasic Configuration and Management Software ImageReload Following object allows you to reload the agentFile download and upload Software ImageSoftware Image Software image details Syntax DisplayString It can display up to 32 characters Software configuration Switch IP configurationsSoftware configuration Sntp server tableMedia table Media table General security objects User AccessAgent user access group Radius general group Authorization and accountingAuthorization and accounting Following objects provide information on the Radius server Radius server tableRadius server table Tacacs general objects Tacacs general objectsFollowing objects provide information on the Tacacs server Tacacs server tableTacacs server table Tacacs server table Multi-Device Port Authentication Multi-device port authenticationGlobal multi-device port authentication objects Clear interface multi-device port authentication objectsMulti-device port authentication Multi-device port authentication objectsMulti-device port authentication clear sessions Multi-device port authentication Multi-device port authentication Traffic Security Dynamic ARP Inspection Vlan configuration tableDAI Vlan configuration table Dynamic Host Configuration Protocol Dynamic Host Configuration ProtocolDynamic ARP Inspection Interface configuration table Dhcp Snooping global scalar object Dhcp Snooping Vlan configuration tableDhcp Snooping Interface configuration table IP Source Guard IP Source Guard Interface configuration tableIP Source Guard MAC-Based Vlan MAC-based Vlan global objectsMAC-based Vlan global objects Interfaces Switch port informationSwitch port information group Switch port information Link Aggregation Group LAG table Link Aggregation Group LAG tableFdryLinkAggregationGroupTable Link Aggregation Group LAG table System Dram information group Monitoring and LoggingCPU utilization Global ARP statistics Support for optical monitoringGlobal ARP statistics Following are the MIB objects display statistics for ARPSystem logging System loggingSystem log server table System logging Agent temperature table for stacking Object for StackingAgent temperature table for stacking Traps and Objects to Enable Traps Objects for Brocade 6910 switch trapsTrap information Trap receiver tableStandard traps System status trapsStandard traps Brocade supports the following traps from RFCBrocade supports for the following traps for Rmon from RFC Traps for spanning tree protocolTraps for Rmon events IronWare traps IronWare trapsGeneral traps Brocade supports for the following traps for stacking Port security trapsTraps for stacking Examples ExamplesRmon event traps Page Examples MIB Variable Index Brocade 6910 Ethernet Access Switch MIB Reference Page Brocade 6910 Ethernet Access Switch MIB Reference

6910 specifications

Brocade Communications Systems, a leader in networking solutions, has established a strong presence in the data center and enterprise networking space with its various product offerings. One of its noteworthy products is the Brocade 6910 Switch, designed specifically for high-performance network environments.

The Brocade 6910 is a high-density, compact Ethernet switch that operates at speeds up to 10 Gigabits per second. It is engineered to support the increasing data demands of modern enterprises while providing reliability and flexibility. With its compact form factor, the 6910 is suitable for space-constrained environments, making it an ideal choice for data centers and edge deployments.

One of the standout features of the Brocade 6910 is its support for both Layer 2 and Layer 3 networking, allowing for dynamic routing and switching capabilities that enhance overall network performance. This dual functionality enables organizations to optimize their network architecture, ensuring seamless data transfer and management.

Power over Ethernet (PoE) functionality is another significant characteristic of the Brocade 6910. This feature allows the switch to deliver power to connected devices, such as IP phones and wireless access points, eliminating the need for separate power sources and reducing cable clutter. This capability not only streamlines installations but also lowers operational costs.

In terms of scalability, the Brocade 6910 supports an extensive number of physical and virtual interfaces, which makes it versatile enough to grow with the needs of an organization. It can efficiently handle increasing traffic loads, enabling businesses to scale their network infrastructure without extensive upgrades.

The switch also incorporates advanced features like Virtual Chassis technology, allowing multiple switches to operate as a single logical entity. This simplifies management and improves redundancy, enhancing overall network reliability. Additionally, the Brocade 6910 includes comprehensive security features that protect network data through robust monitoring and access controls.

Furthermore, the Brocade 6910 is equipped with intelligent network management tools that provide visibility into network performance and health. This functionality helps IT teams to manage resources effectively, troubleshoot issues, and streamline maintenance tasks.

In conclusion, the Brocade 6910 Switch exemplifies modern networking solutions with its high performance, versatility, and advanced management capabilities. Organizations looking for reliable, scalable, and efficient networking solutions will find the Brocade 6910 to be an outstanding choice that meets the demands of today’s dynamic environments.