Support User Manuals

D-Link dgs-3420 Work Light User Manual

Open as PDF

of 938

xStack® DGS-3420 Series Layer 2 Managed Stackable Gigabit Switch CLI Reference Guide

56

Chapter 4

Access Authentication

Control (AAC)

Commands

enable authen_policy

disable authen_policy

show authen_policy

create authen_login method_list_name <string 15>

config authen_login [default | method_list_name <string 15>] method {tacacs | xtacacs | tacacs+

| radius | server_group <string 15> | local | none}(1)

delete authen_login method_list_name <string 15>

show authen_login [default | method_list_name <string 15> | all]

create authen_enable method_list_name <string 15>

config authen_enable [default | method_list_name <string 15>] method {tacacs | xtacacs |

tacacs+ | radius | server_group <string 15> | local_enable | none}(1)

delete authen_enable method_list_name <string 15>

show authen_enable [default | method_list_name <string 15> | all]

config authen application [console | telnet | ssh | http | all] [login | enable] [default |

method_list_name <string 15>]

show authen application

create authen server_group <string 15>

config authen server_group [tacacs | xtacacs | tacacs+ | radius | <string 15>] [add | delete]

server_host <ipaddr> protocol [tacacs | xtacacs | tacacs+ | radius]

delete authen server_group <string 15>

show authen server_group {<string 15>}

create authen server_host <ipaddr> protocol [tacacs | xtacacs | tacacs+ | radius] {port <int 1-

65535> | key [<key_string 254> | none] | timeout <int 1-255> | retransmit <int 1-20>}

config authen server_host <ipaddr> protocol [tacacs | xtacacs | tacacs+ | radius] {port <int 1-

65535> | key [<key_string 254> | none] | timeout <int 1-255> | retransmit <int 1-20>}(1)

delete authen server_host <ipaddr> protocol [tacacs | xtacacs | tacacs+ | radius]

show authen server_host

config authen parameter response_timeout <int 0-255>

config authen parameter attempt <int 1-255>

show authen parameter

enable admin

config admin local_enable {encrypt [plain_text | sha_1] <password>}

The TACACS / XTACACS / TACACS+ / RADIUS commands allows secure access to the Switch

using the TACACS / XTACACS / TACACS+ / RADIUS protocols. When a user logs in to the

Switch or tries to access the administrator level privilege, he or she is prompted for a password. If

TACACS / XTACACS / TACACS+ / RADIUS authentication is enabled on the Switch, it will contact

a TACACS / XTACACS / TACACS+ / RADIUS server to verify the user. If the user is verified, he or

she is granted access to the Switch.

There are currently three versions of the TACACS security protocol, each a separate entity. The

Switch’s software supports the following versions of TACACS:

1. TACACS (Terminal Access Controller Access Control System) —Provides password

checking and authentication, and notification of user actions for security purposes utilizing

previous next