3Com 10014302 manual Parameter, Description

Page 41

3Com Router Command Reference Guide Addendum for V1.2

Parameter

ip ip-address: IP address of the TACACS+ server to be added.

name host-name: Name of the TACACS+ server to be added, which has been configured by the IP host command. It is a string of 1 to 20 printable characters except for the space.

port port-number: The service port number on the TACACS+ server, which is in the range of 1 to 65535.

response-timeouttime: The response timeout time of TACACS+ server, which is in the range of 1 to 1000 seconds and defaults to 5 seconds.

shared-keykey-string: The encrypted key for the AAA negotiation between the Router and the TACACS+ server. It is a string of printable characters (except for the space) of 1 to 64 characters in length. By default, the key configured using the shared-keycommand is used.

authen-primary: Specify the server configured currently as the primary authentication server.

author-primary: Specify the server configured currently as the primary authorization server.

account-primary: Specify the server configured currently as the primary accounting server.

Description

Using host command, you can add a TACACS+ server into a TACACS+ server group by specifying its IP address as well as specifing it as the primary AAA server. Using undo host command, you can delete a TACACS+ server from a TACACS+ server group by specifying its IP address or you can disable it as the AAA primary server.

By default, no TACACS+ server is configured.

A server group allows of a maximum of five TACACS+ servers.

You can use the parameters authen-primary,author-primary, or account-primary to specify the current configured TACACS+ server as the specified primary authentication, authorization, or accounting server. If none of the servers in a sever group has been specified as the primary server, the first one will be the primary server.

If a primary server has been specified, and if the current AAA server is a standby server, the switch interval specified by the timer quiet command in hwtacacs view will be used to perform the standby/primary switchover operation. Otherwise, no switch will be performed.

41

Page 40 Page 42
Image 41
Page 40 Page 42
Contents Published January Command Reference Guide Addendum for3Com Router Download the Router 5000 Installation Guide from Download the Router 3000 Installation Guide fromDownload the 3Com Router Command Reference Guide from Download the 3Com Router Configuration Guide from1.1 af Chapter 1 CBQ Configuration CommandsSyntax Viewundo car 1.2 carcar cir rate cbs size ebs size conform action exceed action number 1.3 debugging qosdisplay qos cbq interface type number 1.4 display qos cbq interface1.6 display qos policy 1.5 display qos classdisplay qos class class-name display qos policy policy-name class class-name3Com display qos policy display qos policy interface type number inbound outbound 1.7 display qos policy interfaceBehaviors Default Queue Flow Based Fair Queueing ef bandwidth bandwidth cbs size undo ef 1.8 efgts cir rate cbs size ebs size queue-length length undo gts 1.9 gtsundo if-match logic-not acl acl-number 1.10 if-match aclif-match logic-not acl acl-number if-match logic-not any undo if-match logic-not any 1.11 if-match anyaccess-list-number ACL number undo if-match logic-not class class-name 1.12 if-match classif-match logic-not class class-name if-match logic-not criteria undo if-match logic-not criteria 1.13 if-match criteria1.15 if-match ip-dscp 1.14 if-match inbound-interfacenumber Interface number if-match logic-not inbound-interface type numberundo if-match logic-not ip-precedence value value … 1.16 if-match ip-precedenceif-match logic-not ip-precedence value value … undo if-match logic-not destination-mac source-mac mac-address 1.17 if-match mac-addressif-match logic-not destination-mac source-mac mac-address undo if-match logic-not protocol ip 1.18 if-match protocolif-match logic-not protocol ip 1.20 qmtoken 1.19 if-match rtpqmtoken token-number undo qmtoken1.21 qos apply policy undo qos class logic-and logic-or class-name 1.22 qos classqos class logic-and logic-or class-name qos max-bandwidth kilobits undo qos max-bandwidth 1.23 qos max-bandwidthqos policy policy-name undo qos policy policy-name 1.24 qos policyqos reserved-bandwidth pct percent undo qos reserved-bandwidth 1.25 qos reserved-bandwidth1.27 queue-length 1.26 qos-classqos-class class-name undo qos-class class-name queue-length queue-length undo queue-length queue-lengthremark ip-dscp value undo remark ip-dscp value 1.28 remark ip-dscpremark ip-precedence value undo remark ip-precedence value 1.29 remark ip-precedence1.31 wred 1.30 wfqwfq queue-number total-queue-number undo wfqundo wred ip-dscp ip-precedence 1.32 wred ip-dscpdiscard-prob undo wred ip-dscp dscp-valueParameter undo wred ip-precedence value 1.33 wred ip-precedencewred weighting-constant exponent undo wred weighting-constant 1.34 wred weighting-constantinterface-type interface-number Interface name and number Chapter 2 TACACS+ Configuration Commands2.1 debugging hwtacacs 2.2 display hwtacacs accounting Example 2.3 display hwtacacs server domain undo domain 2.4 domainFor a related command, see reset hwtacacs server statistics 2.5 host Description Warning Reach the max limited of server in one template 2.6 hwtacacs-server template 2.8 reset hwtacacs server statistics 2.7 reset hwtacacs accounting statisticsreset hwtacacs accounting statistics reset hwtacacs server statisticsshared-key key-string 2.9 shared-keyundo source-ip 2.10 source-ip2.11 timer quiet 3.1 debugging rsa Chapter 3 SSH Configuration Commands3.2 debugging ssh server debugging rsa undo debugging rsadisplay rsa local-key-pair public 3.3 display rsa local-key-pair public3Com display rsa local-key-pair public display rsa peer-public-key brief name keyname 3.4 display rsa peer-public-keydisplay ssh server status session 3.5 display ssh server3.7 hex 3.6 display ssh user-informationdisplay ssh user-information username hex hex-dataD6C54A36 kill ssh all userID userid 3.8 kill sshprotocol inbound ssh telnet numbers acl acl-number 3.9 protocol inboundpublic-key-code begin 3.10 public-key-code beginpublic-key-code end 3.11 public-key-code endrsa local-key-pair create 3.12 rsa local-key-pair creatersa local-key-pair destroy 3.13 rsa local-key-pair destroyrsa peer-public-key key-name undo rsa peer-public-key key-name 3.14 rsa peer-public-keyundo ssh server authentication-retries 3.15 ssh server authentication-retriesssh server authentication-retries times 3.16 ssh server rekey-interval 3.17 ssh server timeoutssh server timeout seconds undo ssh server timeout ssh server rekey-interval hours undo ssh server rekey-intervalundo ssh user username assign rsa-key 3.18 ssh user username assign rsa-keyssh user username assign rsa-key keyname undo ssh user username authentication-type password RSA all 3.19 ssh user authentication-typessh user username authentication-type password RSA all 3Com ssh user smith authentication-type password 4.1 debugging ntp-service Chapter 4 NTP Configuration Commandsdisplay ntp-service sessions verbose 4.2 display ntp-service sessionsdisplay ntp-service status 4.3 display ntp-service statusdisplay ntp-service trace 4.4 display ntp-service traceundo ntp-service access query synchronization server peer 4.5 ntp-service accessntp-service access query synchronization server peer acl-number 4.7 ntp-service authentication-keyid 4.6 ntp-service authentication enablentp-service authentication enable undo ntp-service authentication enablentp-service broadcast-client undo ntp-service broadcast-client 4.8 ntp-service broadcast-client4.9 ntp-service broadcast-server 4.11 ntp-service multicast-client 4.10 ntp-service max-dynamic-sessionsntp-service max-dynamic-sessions number undo ntp-service max-dynamic-sessionsundo ntp-service multicast-server 4.12 ntp-service multicast-server4.13 ntp-service refclock-master undo ntp-service reliable authentication-keyid number 4.14 ntp-service reliable authentication-keyidntp-service reliable authentication-keyid number undo ntp-service source-interface 4.15 ntp-service source-interface4.17 ntp-service unicast-peer 4.16 ntp-service source-interface disableundo ntp-service unicast-peer undo ntp-service unicast-server 4.18 ntp-service unicast-server3Com ntp-service unicast-server 128.108.22.44 version 5.1 debugging x25 x2t Chapter 5 X2T Configuration Commands5.2 display x25 x2t route debugging x25 x2t all event packet5.4 translate ip 5.3 display x25 x2t switch-tabledisplay x25 x2t switch-table translate ip ip-address port port-number x25 x.121-addressundo translate ip ip-address port port-number 5.5 translateRoutertranslate x25 12322 ip 10.110.54.19 port 6.1 isdn ignore callednum Chapter 6 Additional ISDN Configuration Commands3Com-E1-0 interface serial 215 3Com-serial215 isdn ignore callednum 6.2 isdn ignore hlc6.4 isdn waitconnectack 6.3 isdn ignore llcSyntax 6.5 display isdn spidView ParameterExample 6.6 isdn ignore dchan6.7 isdn protocol-type undo isdn q931-timer timer-name all 6.8 isdn q931-timer6.9 isdn spid auto-trigger 6.10 isdn spid nit 6.11 isdn spid timer 6.12 isdn spid resend Example 6.13 isdn spid service3Com-bri0 isdn spid service data 3Com-bri0/0 isdn spid service speech 6.15 isdn spid2 6.14 isdn spid13Com-bri0 isdn spid2
Top Page Image Contents