?
Solved

AAA question

Posted on 2006-10-22
2
Medium Priority
?
394 Views
Last Modified: 2010-04-17
can someone tell me what the following means (I'm looking for a breakdown of each part):

aaa authentication login default group tacacs+       (can someone breakdown this for me? Is tacacs+ a group name?)
aaa authorization network default group tacacs+    (same question as above. Is tacacs+ a group name)
aaa accounting exec default start-stop group tacacs+ (what does everything after "exec" mean?)



thanks
0
Comment
Question by:dissolved
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 12

Accepted Solution

by:
pjtemplin earned 2000 total points
ID: 17786168
aaa authentication login default group tacacs+

This requires users logging into the router, on all lines that do not have a non-default authentication group assigned, to validate their identity, checked against the group of tacacs+ servers listed later in the config.

aaa authorization network default group tacacs+

This requires PPP, SLIP, and ARAP connections to get authorization from the tacacs+ servers listed later in the config.

aaa accounting exec default start-stop group tacacs+

This tracks the activity of user EXEC sessions to the tacacs+ server group.

See http://tinyurl.com/6tnks for further information.
0
 

Author Comment

by:dissolved
ID: 17786229
hey thanks me.
So what does the "group" denote?
I'm assuming "tacacs+" denotes that we will be using TACACS+ as opposed to RADIUS?

Thanks
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

We've been using the Cisco/Linksys RV042 for years as: - an internet Gateway - a site-to-site VPN device - a leased line site-to-site subnet-to-subnet interface (And, here I'm assuming that any RV0xx behaves the same way as an RV042.  So that's …
How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question