AI296 Version 9.8x User’s Guide

AI296 Commands: aaa

stat

Displays or clears AAA specific counters and statistics. The following

 

parameter is accepted:

 

clear—Clears all counters and statistics.

summary

Displays a summary of all authentication, authorization, and accounting

 

settings.

timeout

Configures the number of seconds to wait for a response from a

 

TACACS+ server. If no response is received from the server in the

 

allowed number of seconds, the connection attempt fails. The following

 

parameters are accepted:

 

z timeout_value—Defines how long (in seconds) AI296 will wait for

 

a response from a TACACS+ server when a connection attempt is

 

made. Valid values are 1 to 120.

 

z default—Resets the timeout value to its default.

Command Defaults

Disabled TACACS+ accounting, authenitcation, and authorization

Examples

The following AAA settings are configured:

zEnabled TACACS+ fallback

zEnabled AAA accounting

zEnabled AAA authentication on telnet connections

zpriv-lvlauthorization

zCustom profile newProf with TACACS+ privilege levels 3 to 5

zEnabled TACACS+ authentication for AsyncPPP links 1 to 9

z10 retry attempts

z15 second timeout.

[296]aaa fallback enable

[296] aaa account enable

[296] aaa authen enable telnet

WARNING: Potential lock-out:

At least one TACACS+ server must be enabled for Authentication

AND at least one TACACS+ server must be enabled for Authorization.

[296]aaa author priv-lvl

[296]aaa profile 3-5 newProf

[296]aaa ppp authen 1-9 enable

[296]aaa retry 10

[296]aaa timeout 15

9-10

Page 268
Image 268
Kentrox AI296 manual Command Defaults, Examples