?
Solved

AAA question

Posted on 2006-10-22
2
Medium Priority
?
423 Views
Last Modified: 2010-04-17
can someone tell me what the following means (I'm looking for a breakdown of each part):

aaa authentication login default group tacacs+       (can someone breakdown this for me? Is tacacs+ a group name?)
aaa authorization network default group tacacs+    (same question as above. Is tacacs+ a group name)
aaa accounting exec default start-stop group tacacs+ (what does everything after "exec" mean?)



thanks
0
Comment
Question by:dissolved
2 Comments
 
LVL 12

Accepted Solution

by:
pjtemplin earned 2000 total points
ID: 17786168
aaa authentication login default group tacacs+

This requires users logging into the router, on all lines that do not have a non-default authentication group assigned, to validate their identity, checked against the group of tacacs+ servers listed later in the config.

aaa authorization network default group tacacs+

This requires PPP, SLIP, and ARAP connections to get authorization from the tacacs+ servers listed later in the config.

aaa accounting exec default start-stop group tacacs+

This tracks the activity of user EXEC sessions to the tacacs+ server group.

See http://tinyurl.com/6tnks for further information.
0
 

Author Comment

by:dissolved
ID: 17786229
hey thanks me.
So what does the "group" denote?
I'm assuming "tacacs+" denotes that we will be using TACACS+ as opposed to RADIUS?

Thanks
0

Featured Post

Learn to develop an Android App

Want to increase your earning potential in 2018? Pad your resume with app building experience. Learn how with this hands-on course.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

While it is possible to put two routes in place with the secondary having a higher metric, this may not always work. In the event of a failure that does not bring down the physical interface on the router the primary route is not removed. There is a…
In this tutorial I will show you with short command examples how to obtain a packet footprint of all traffic flowing thru your Juniper device running ScreenOS. I do not know the exact firmware requirement, but I think the fprofile command is availab…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

601 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question