User`s guide

ManualsBrandsTripp Lite Manualselectrical equipment & suppliesPDU3VS6L2120

3. Web Console continued

3.8 Preferences continued

3.8.3 Preferences > Security continued

ACL IP Mask (Users with SNMP Access Only)

This deﬁnes the Subnet Mask to use with the ACL IP Address to determine

if an address is one from which the user is allowed to access the data

via SNMP.

192.168.1.1 (single) 255.255.255.255

192.168.1.0 (range) 255.255.255.0

192.168.0.0 255.255.0.0

192.0.0.0 255.0.0.0

* (everyone) 0.0.0.0

Password (N/A for SNMPv1 or SNMPv2c)

This is the user password for logging in. For SNMPv3 users, this is also

the Priv Password.

Auth Password (N/A for SNMPv1 or SNMPv2c)

For SNMPv3 Users only, this is the Auth Password.

Idle Timeout in Minutes (N/A for SNMPv1 or SNMPv2c)

This applies to data access other than SNMP which does not use the

concept of a logged in session. This is the amount of time that the

session can be idle before it will time out and no longer have access to

the data. When the value is 0, an idle session will not time out.

Session Expiration Minutes (N/A for SNMPv1 or SNMPv2c)

This applies to data access other than SNMP which does not use the

concept of a logged in session. This is the amount of total time that a

session may last whether or not the session is idle or active. When the

value is 0, the session will not expire.

AAA Preferences

Authorization Scheme

The authorization scheme deﬁnes how user authentication will be done. The

authorization can be done with locally deﬁned users only, RADIUS server

deﬁned users only or a combination of the two. The valid values are:

•LocalOnly

The system only uses locally deﬁned user deﬁnitions.

•RADIUSOnly

The system uses RADIUS only for authentication.

•LocalThenRADIUS

The system uses locally deﬁned user deﬁnitions ﬁrst.

If the user data is not found, it uses RADIUS for authentication.

•RADIUSThenLocal

The system uses RADIUS for authentication ﬁrst, if not authorized

via the RADIUS server, the locally deﬁned users will be used for

authentication.

Figure 3-35: AAA Preferences

Accounting Scheme

This deﬁnes where the user session accounting data will be recorded.

Like the authorization, the data can be recorded locally or on the RADIUS

server or a combination of the two. The valid values are:

•LocalOnly

Use only the local system to record the session accounting data.

•RADIUSOnly

Uses only the RADIUS servers deﬁned to record the session

accounting data.

•LocalThenRADIUS

Try to record the session accounting data locally and if not able to,

then try to record to RADIUS.

•RADIUSThenLocal

Try to record the session accounting data on RADIUS ﬁrst and if fails,

then record locally.

RADIUS Servers

Address

This deﬁnes the internet address of the RADIUS server.

Priority

This is a number that deﬁnes the priority of this RADIUS server

Shared Secret

This is the shared secret value to be used with this RADIUS server.

Authentication Port

This deﬁnes the port on the server to be used for authentication.

Accounting Port

This deﬁnes the port on the server to be used for accounting.