AI296 Version 9.8x User’s Guide
AI296 Commands: aaa
9-10
Command Defaults
Disabled TACACS+ accounting, authenitcation, and authorization
Examples
The following AAA settings are configured:
z Enabled TACACS+ fallback
z Enabled AAA accounting
z Enabled AAA authentication on telnet connections
z priv-lvl authorization
z Custom profile newProf with TACACS+ privilege levels 3 to 5
z Enabled TACACS+ authentication for AsyncPPP links 1 to 9
z 10 retry attempts
z 15 second timeout.
stat
Displays or clears AAA specific counters and statistics. The following
parameter is accepted:
clear—Clears all counters and statistics.
summary
Displays a summary of all authentication, authorization, and accounting
settings.
timeout
Configures the number of seconds to wait for a response from a
TACACS+ server. If no response is received from the server in the
allowed number of seconds, the connection attempt fails. The following
parameters are accepted:
z
timeout_value
—Defines how long (in seconds) AI296 will wait for
a response from a TACACS+ server when a connection attempt is
made. Valid values are 1 to 120.
z default—Resets the timeout value to its default.
[296] aaa fallback enable
[296] aaa account enable
[296] aaa authen enable telnet
WARNING: Potential lock-out:
At least one TACACS+ server must be enabled for Authentication
AND at least one TACACS+ server must be enabled for Authorization.
[296] aaa author priv-lvl
[296] aaa profile 3-5 newProf
[296] aaa ppp authen 1-9 enable
[296] aaa retry 10
[296] aaa timeout 15
[296]