Manualshelf

Service Manual

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S3048-ON
641642643644645646647648649650
45
Security
Security features are supported on Dell Networking OS.
This chapter describes several ways to provide security to the Dell Networking system.
For details about all the commands described in this chapter, refer to the Security chapter in the Dell Networking OS Command
Reference Guide.
AAA Accounting
Accounting, authentication, and authorization (AAA) accounting is part of the AAA security model.
For details about commands related to AAA security, refer to the Security chapter in the Dell Networking OS Command Reference
Guide
.
AAA accounting enables tracking of services that users are accessing and the amount of network resources being consumed by
those services. When you enable AAA accounting, the network server reports user activity to the security server in the form of
accounting records. Each accounting record comprises accounting attribute/value (AV) pairs and is stored on the access control
server.
As with authentication and authorization, you must congure AAA accounting by dening a named list of accounting methods and
then applying that list to various virtual terminal line (VTY) lines.
Conguration Task List for AAA Accounting
The following sections present the AAA accounting conguration tasks.
Enabling AAA Accounting (mandatory)
Suppressing AAA Accounting for Null Username Sessions (optional)
Conguring Accounting of EXEC and Privilege-Level Command Usage (optional)
Conguring AAA Accounting for Terminal Lines (optional)
Monitoring AAA Accounting (optional)
Enabling AAA Accounting
The aaa accounting command allows you to create a record for any or all of the accounting functions monitored.
To enable AAA accounting, use the following command.
Enable AAA accounting and create a record for monitoring the accounting function.
CONFIGURATION mode
aaa accounting {commands | exec | suppress | system level} {default | name} {start-stop |
wait-start | stop-only} {tacacs+}
The variables are:
system: sends accounting information of any other AAA conguration.
exec: sends accounting information when a user has logged in to EXEC mode.
command level: sends accounting of commands executed at the specied privilege level.
642
Security