Administrator Guide

ManualsBrandsDell ManualsComputer equipmentPowerEdge M IO Aggregator

161

162

163

164

165

166

167

168

169

170

– timeout seconds: the range is from 0 to 1000. Default is 10 seconds.

– key key: enter a string for the key. The key can be up to 42 characters long. This key must match

a key configured on the TACACS+ server host. This parameter must be the last parameter you

configure.

If you do not configure these optional parameters, the default global values are applied.

Example of Connecting with a TACACS+ Server Host

To specify multiple TACACS+ server hosts, configure the tacacs-server host command multiple

times. If you configure multiple TACACS+ server hosts, Dell Networking OS attempts to connect with

them in the order in which they were configured.

To view the TACACS+ configuration, use the show running-config tacacs+ command in EXEC

Privilege mode.

To delete a TACACS+ server host, use the no tacacs-server host {hostname | ip-address}

command.

freebsd2# telnet 2200:2200:2200:2200:2200::2202

Trying 2200:2200:2200:2200:2200::2202...

Connected to 2200:2200:2200:2200:2200::2202.

Escape character is '^]'.

Password:

Dell#

TACACS+ Accounting Feature in I/O Aggregator

AAA Accounting enables tracking of services that users are accessing and the amount of network

resources being consumed by those services. When AAA Accounting is enabled, the network server

reports user activity to the security server in the form of accounting records. Each accounting record is

comprised of accounting AV pairs and is stored on the access control server. As with authentication and

authorization, you must configure AAA Accounting by defining a named list of accounting methods, and

then apply that list to various interfaces. Currently the only method supported by Dell Networking OS is

TACACS+.

This feature is available in all modes of I/O Aggregator (Stanadlone, Stacking, VLT, Programmable mux).

Configuring and Verifying AAA Accounting Settings

The aaa accounting command enables you to create a record for any or all of the accounting functions

monitored. For example if you need to accounting to be track all usage of EXEC Level Commands and

commands with privilege level 15, perform the following task in configuration mode.

Dell(conf)#aaa accounting commands 15 default start-stop tacacs+

Dell(conf)#aaa accounting exec default start-stop tacacs+

Configuring AAA Accounting for Terminal Lines

To enable AAA accounting with a named method list for a specific terminal line (where com15 and

execAcct are the method list names), use the following commands.

• Configure AAA accounting for terminal lines.

CONFIG-LINE-VTY mode

accounting commands 15 com15

168

Security for M I/O Aggregator