Web Interface – Configuration
is used for primary authentication it is recommended to configure secondary authentication as ‘ local ’ . This will enable the management client to login via the local user database if none of the configured authentication servers are alive. Cmd Lvl Authorize all commands with a privilege level higher than or equal to this level. Valid values are in the range 0 to 15. Cfg Cmd Also authorize configuration commands.
4.13.2 Command Authorization Method Configuration
The command authorization section allows you to limit the CLI commands available to a user. The authentication method configuration has the following parameters: Client The management client for which the configuration applies:
Console
¾
Telnet
¾
SSH
¾
Methods
Method can be set to one of the following values:
no: Command authorization is disabled. User is granted access to CLI commands according to his privilege level. tacacs: Use remote TACACS+ server(s) for command authorization. If all remote servers are offline, the user is granted access to CLI commands according to his privilege level. Cmd Lvl Authorize all commands with a privilege level higher than or equal to this level. Valid values are in the range 0 to 15.
Cfg Cmd Also authorize configuration commands.
4.13.3 Accounting Method Configuration
The accounting section allows you to configure command and exec (login) accounting. The table has one row for each client type and a number of columns, which are:
Confidential
User Guide: CE Services
Page 160
Made with FlippingBook interactive PDF creator