Filter
Top Products
User
HWTACACS
Client
HWTACACS
Server
User logs in
Authentication Start Reques t packet
Authentication response packet,
requesting for the user name
Request User for the us er name
User enters the user name
Authentication continuance packet
carrying the user name
Authentication response packet,
requesting for the password
Request User for the password
User enters the password
Authentication continuance packet
carrying the password
Authentication succ ess packet
Authorization request packet
Authorization success packet
User is permitted
Accounting start request packet
Accounting start response packet
User quits
Accounting stop packet
Accounting stop response packet
User
HWTACACS
Client
HWTACACS
Server
User logs in
Authentication Start Reques t packet
Authentication response packet,
requesting for the user name
Request User for the us er name
User enters the user name
Authentication continuance packet
carrying the user name
Authentication response packet,
requesting for the password
Request User for the password
User enters the password
Authentication continuance packet
carrying the password
Authentication succ ess packet
Authorization request packet
Authorization success packet
User is permitted
Accounting start request packet
Accounting start response packet
User quits
Accounting stop packet
Accounting stop response packet
Figure 2-3 The flow of implementing AAA for a telnet user
2.3 The TACACS+ Functions Implemented by 3Com Routers
3Com Routers support the following TACACS+ functions:
1) AAA on login users (including console, Telnet, dumb terminal, PAD, terminal
accessing, and FTP users)
2) AAA on PPP users
3) AAA on VPDN users (L2TP is used in this case)
2.4 TACACS+ Configuration Tasks
Basic TACACS+ configuration tasks include:
Create a TACACS+ server group
Add the TACACS+ server into a TACACS+ server group
High-level TACACS+ configuration tasks include:
3Com Router Configuration Guide Addendum for V1.20
19