Specifications
clear tacacs session Configuring TACACS+
Enterasys Matrix N Standalone (NSA) Series Configuration Guide 25-69
Mode
Switchcommand,Read‐Write.
Usage
Whensessionaccountingisenabled,theTACACS+serverwilllogaccountinginformation,suchas
startandstoptimes,IPaddressoftheclient,andsoforth,foreachauthorizedclientsession.
WhentheTACACS+clientisenabledontheEnterasysMatrixswitch(withthesettacacsenable
command),thesessionauthorization
parametersconfiguredwiththiscommandaresentbythe
clienttotheTACACS+serverwhenasessionisinitiatedontheEnterasysMatrixswitch.The
parametervaluesmustmatchaserviceandaccesslevelattribute‐valuepairsconfiguredonthe
serverforthesessiontobeauthorized.Iftheparametervalues
donotmatch,thesessionwillnot
beallowed.
Theservicenameandattribute‐valuepairscanbeanycharacterstring,andaredeterminedby
yourTACACS+serverconfiguration.
Examples
ThisexampleconfigurestheservicerequestedbytheTACACS+clientastheservicename“basic.”
Matrix(rw)->set tacacs session authorization service basic
ThisexamplemapstheMatrixread‐writeaccessprivilegeleveltoanattributenamed“priv‐lvl”
withthevalueof5configuredontheTACACS+server.
Matrix(rw)->set tacacs session authorization read-write priv-lvl 5
ThisexampleenablesTACACS+sessi onaccounting.
Matrix(rw)->set tacacs session accounting enable
clear tacacs session
UsethiscommandtoreturntheTACACS+sessionauthorizationsettingstotheirdefaultvalues.
Syntax
clear tacacs session authorization { [service] [read-only] [read-write] [super-
user] }
Parameters
authorization ClearstheTACACS+sessionauthorizationparameters.
service ClearstheTACACS+sessionauthorizationservicenametothedefault
valueof“exec.”
read‐only ClearstheTACACS+sessionauthorizationread‐onlyattribute‐value
pairtotheirdefaultvaluesof“priv‐lvl”and0.
read‐write ClearstheTACACS+sessionauthorizationread‐writeattribute‐value
pairtotheirdefaultvaluesof“priv‐lvl”and1.
super‐user ClearstheTACACS+sessionauthorizationsuper‐userattribute‐value
pairtotheirdefaultvaluesof“priv‐lvl”and15.