Manualshelf

System information

ManualsBrandsAllied Telesis ManualsComputer equipmentAT-2501 Series
21222324252627282930
Operation 1-21
Software Release 2.0.1
C613-03018-00 REV A
TACACS
The router supports the use of TACACS (Terminal Access Controller Access
System) servers as an alternative method of user authentication. The router
sends a TACACS request, which includes the username and password, to each
TACACS server in turn. The TACACS server responds with an “accept” or
reject” response. If the response is “accept” then the user is authenticated. If the
response is “reject”, a request is sent to the next server in the list until all servers
have been queried. If all the servers on the list reject the request then the user
authentication is rejected.
There is a timeout period for TACACS requests, and if a response is not
received within the specified time, the request is retried. The timeout period
and the number of retries to be attempted can be configured using the
command:
SET USER [TACRETRIES=0..10] [TACTIMEOUT=1..60]
Requests are sent to the TACACS servers on the list in a round-robin fashion
until one of the servers accepts the request, all of the servers have rejected the
request or the number of retries has been reached for each server.
A TACACS server is added to the list of defined servers with the command:
ADD TACACS SERVER=ipadd
where ipadd is the IP address of the TACACS server, in dotted decimal notation.
A TACACS server can be deleted from the list of servers using the command:
DELETE TACACS SERVER=ipadd
The list of currently defined TACACS servers can be displayed with the
command:
SHOW TACACS SERVER
Remote Management
Managing remote routers is as easy as managing the local router to which the
terminal is connected. From a terminal connected to any port (with either
USER or MANAGER privilege), use the command:
TELNET ipadd
to Telnet to the remote router, specifying the remote router’s IP address. If the
connection is successful a login prompt from the remote router is displayed.
Login using a login name that has been defined with MANAGER privilege
(such as the default MANAGER login name), and enter the password.
To return to the local router, use the command:
LOGOFF
to terminate the connection. For more information about using Telnet, see
Chapter 11, Terminal Server.