9-8
Cisco SN5428-2 Storage Router Software Configuration Guide
OL-5239-01
Chapter9 Configuring Authentication
Configuration Tasks
Figure9-4 Enable Authentication Configuration Elements with TACACS+ ServersSN 5428-2 Storage Router
AAA authentication services
Authentication services list
TACACS+ Enable
CLI command session processor
Monitor
Telnet, SSH or console management session
105746
the user name and
password are sent
"enable" command prompts
for password
(and user name, if none needed at login)
Administrator
password
Monitor
password
When Enable authentication is
enabled, authentication is
required when the user
attempts Administrator mode
access via the CLI "enable"
command.
The user is prompted for a
password, which is sent along
with the user name entered at
login, to AAA for authentication.
AAA uses the default
authentication list to determine
which services to use for the
authentication attempt.
If the user name was not needed
for login, the storage router
prompts the user to enter a
user name along with the
password, and both are sent to
AAA for authentication.
If authentication fails, the
request is refused and the user
cannot obtain Administrator
mode access to the storage
router.
Remote TACACS+ servers