4: Advanced Operations
The Add PortToLDAP command grants an LDAP group access to the serial port.
To grant serial port access to an LDAP group:
1. At the command prompt, type add porttoldap console and a group name.
Press Enter.
Deleting serial port access for an LDAP group
The Delete PortFromLDAP command removes an LDAP group’s access to the serial
port. You cannot remove access to the serial port for an administrative level group.
To delete serial port access for an LDAP group:
1. At the command prompt, type delete portfromldap console and a group
name. Press Enter.
Displaying LDAP Group access
The List LDAPGroup command displays all access rights for an LDAP group.
To display LDAP Group access:
At the command prompt, type list ldapgroup, optionally followed by a group
name. Press Enter.
Example
The following command displays information about the LDAP group PowerUser:
SLP: list ldapgroup poweruser<Enter>
Username: PowerUser
Outlet Outlet
ID Name
.A1 DataServer_1
.A2 WebServer_1
Groups:
ServerGroup_1
ServerGroup_2
More [Y/es N/o]: Y
Ports:
Port Port
ID Name
Console Console
TACACS+
The SLP family of products supports the Terminal Access Controller Access Control
System (TACACS+) protocol. This enables authentication and authorization with a
central TACACS+ server; user accounts do not need to be individually created locally
on each SLP device.
This allows administrators to pre-define and configure (in each SLP product, and in
the TACACS+ server) a set of necessary TACACS+ privilege levels, and users
access rights for each. User’s access rights can then be assigned or revoked
simply by making the user a member of one-or-more pre-defined SLP TACACS+
privilege levels. User account rights can be added, deleted, or changed within
TACACS+ without any changes needed on individual SLP products.
The SLP supports 16 different TACACS+ privilege levels; 15 are entirely
configurable by the system administrator (1 is reserved for default Admin level
access to all SLP resources).
SecureLinx SLP Remote Power Manager 86