Specifications
9-62
Cisco MGX 8800/8900 Series Software Configuration Guide
Release 5.1, Part Number OL-6482-01, Rev. A0, January 25, 2005
Chapter 9 Switch Operating Procedures
Managing Remote (TACACS+) Authentication and Authorization
PXM1E_SJ.7.PXM.a > ssh 172.29.52.88
cisco@172.29.52.88's password:
M8850_LA.8.PXM
Returning to the Previous Session
After you create a secure session between two switches, enter the bye command or the exit command to
close the current session and return to the previous session. The following example shows the switch
response to the bye command:
M8850_LA.8.PXM.a > bye
(session ended)
Connection to 172.29.52.88 closed by remote host.
Connection to 172.29.52.88 closed.
M8850_NY.7.PXM.a >
Managing Remote (TACACS+) Authentication and Authorization
Remote authentication and authorization is a feature that allows you to manage user authentication and
command authorization on multiple switches from a single authentication, authorization, and accounting
(AAA) server. Authentication verifies that a user is entitled to connect to a switch, and authorization
verifies that the user is entitled to execute each command the user enters. Communications between the
switch and the AAA server use the Terminal Access Control Access Control System Plus (TACACS+)
protocol. Refer to the following sections to configure remote authentication and authorization:
• Configuring AAA Servers
• Configuring the Cisco MGX Switch to Access AAA Servers
• Configuring the Default Privilege Level
• Configuring the Prompt Override Option
• Configuring User Authentication on the Switch
• Configuring Command Authorization on the Switch
In addition, refer to the following additional sections that describe other tasks related to managing AAA
server authentication:
• Configuring FTP and SSH Messaging Format for AAA Servers
• Displaying the TACACS+ Configuration
• Displaying AAA Server Information
• Displaying AAA Server Statistics
• Avoiding Command Mode Authorization Issues with RPM