Appendix K Router Platform User Interface Reference

VTY Policy Page

Console Page—Authentication Tab, page K-121

Field Reference

Table K-60 VTY Line Dialog Box—Authorization Tab

Element

Description

EXEC Authorization settings

Authorize EXEC

The authorization method that determines whether a user is allowed to run

Operations Using

an EXEC session:

 

None—Authorization is not performed. This is the default.

 

AAA Policy Default List—Uses the default authorization method list

 

that is defined in the device’s AAA policy. See AAA

 

Page—Authorization Tab, page K-90.

 

Custom Method List—Uses the authorization methods specified in the

 

Prioritized Method List field.

 

 

Prioritized Method List

Applies only when Custom Method List is selected as the EXEC method.

 

Defines a sequential list of methods to be queried when authorizing a user.

 

Enter the names of one or more AAA server group objects (up to four), or

 

click Select to display an Object Selectors, page F-593. Use the up and down

 

arrows in the object selector to define the order in which the selected server

 

groups should be used.

 

The device tries initially to authorize users using the first method in the list.

 

If that method fails to respond, the device tries the next method, and so on,

 

until a response is received.

 

If the AAA server group you want is not listed, click the Create button in the

 

selector to display the AAA Server Group Dialog Box, page F-12. From here

 

you can define a AAA server group object.

 

Note If you select None as a method, it must appear as the last method in

 

the list.

 

Note RADIUS uses the same server for authentication and authorization.

 

Therefore, if you use define a RADIUS method list for

 

authentication, you must define the same method list for

 

authorization.

 

 

 

User Guide for Cisco Security Manager 3.2

K-138

OL-16066-01

Page 138
Image 138
Cisco Systems OL-16066-01 appendix Page-Authorization Tab, page K-90, 138