Netgear M4300-24X24F (XSM4348S) - Stackable Managed Switch with 48x10G including 24x10GBASE-T and 24xSFP+ Layer 3 Guia Do Programa
Management Commands
97
M4200 and M4300 Series ProSAFE Managed Switches
Exec Authorization
When exec authorization is configured for a line mode, the user may not be required to use
the enable command to enter Privileged EXEC mode. If the authorization response indicates
that the user has sufficient privilege levels for Privileged EXEC mode, then the user bypasses
User EXEC mode entirely.
the enable command to enter Privileged EXEC mode. If the authorization response indicates
that the user has sufficient privilege levels for Privileged EXEC mode, then the user bypasses
User EXEC mode entirely.
The exec authorization usage scenario is as follows:
1.
Configure Authorization Method List
aaa authorization exec listname method1 [method2....]
2.
Apply AML to an Access Line Mode (console, telnet, SSH)
authorization exec listname
3.
When the user logs in, in addition to authentication, authorization will be performed to
determine if the user is allowed direct access to Privileged EXEC mode.
determine if the user is allowed direct access to Privileged EXEC mode.
(NETGEAR Switch) #
(NETGEAR Switch) #configure
(NETGEAR Switch) (Config)#aaa authorization exec default tacacs+ none
(NETGEAR Switch) (Config)#aaa authorization commands default tacacs+ none
no aaa authorization
This command deletes the authorization method list.
Format
aaa authorization {commands | exec} {default | list-name} method1 [method2]
Mode
Global Config
Parameter
Description
commands
Provides authorization for all user-executed commands.
exec
Provides exec authorization.
default
The default list of methods for authorization services.
list-name
Alphanumeric character string used to name the list of authorization methods.
method
TACACS+, RADIUS, Local, and none are supported.
Format
no aaa authorization {commands | exec} {default | list-name}
Mode
Global Config