Cisco Systems OL-7396-01 Manual De Usuario
4-16
ATM Switch Router Software Configuration Guide
OL-7396-01
Chapter 4
Configuring System Management Functions
Configuring RADIUS
Configuring AAA Accounting
To enable the AAA accounting of requested services for billing or security purposes when using
TACACS+, perform the following steps in global configuration mode:
TACACS+, perform the following steps in global configuration mode:
Configuring TACACS Server
Refer to the Security Configuration Guide for details about the TACACS configuration tasks that
include:
include:
•
Setting the number of login attempts allowed to the TACACS server
•
Enabling extended TACACS mode
•
Configuring a TACACS host
Configuring PPP Authentication
Refer to the Dial Solutions Configuration Guide for details about the PPP Authentication configuration
tasks that include:
tasks that include:
•
Enabling Challenge Handshake Authentication Protocol (CHAP) or Password Authentication
Protocol (PAP)
Protocol (PAP)
•
Enabling an AAA authentication method on an interface
Configuring RADIUS
RADIUS is a distributed client/server system that secures networks against unauthorized access.
RADIUS clients run on ATM switch routers and send authentication requests to a central RADIUS server
that contains all user authentication and network service access information. RADIUS is a fully open
protocol, distributed in source code format, that can be modified to work with any security system
currently available.
RADIUS clients run on ATM switch routers and send authentication requests to a central RADIUS server
that contains all user authentication and network service access information. RADIUS is a fully open
protocol, distributed in source code format, that can be modified to work with any security system
currently available.
Command
Purpose
Step 1
Switch(config)# aaa accounting system
Performs accounting for all system-level events
not associated with users, such as reloads.
not associated with users, such as reloads.
Step 2
Switch(config)# aaa accounting network
Runs accounting for all network-related service
requests, including SLIP, PPP, PPP NCPs, and
ARAP.
requests, including SLIP, PPP, PPP NCPs, and
ARAP.
Step 3
Switch(config)# aaa accounting connection
Runs accounting for outbound Telnet and rlogin.
Step 4
Switch(config)# aaa accounting exec
Runs accounting for Execs (user shells). This
keyword might return user profile information
such as autocommand information.
keyword might return user profile information
such as autocommand information.
Step 5
Switch(config)# aaa accounting commands level Runs accounting for all commands at the
specified privilege level.