Cisco AS5800 Specifications Page 166
- Page / 334
- Table of contents
- TROUBLESHOOTING
- BOOKMARKS
Rated. / 5. Based on customer reviews
4-28
Cisco AS5800 Operations, Administration, Maintenance, and Provisioning Guide
DOC-7810814=
Chapter 4 Administration
Access Service Security
Configuring Authentication on a TACACS+ Server
On most TACACS+ security servers, there are three ways to authenticate a user for login:
• Include a cleartext (DES) password for a user or for a users group (each user can belong to only one
group). Note that CHAP and global user authentication must be specified in cleartext.
The following is the configuration for global authentication:
user = birdman {global = cleartext “birdman global password”}
To assign different passwords for CHAP, and a normal login, you must enter a string for each user.
Each string must specify the security protocols, state whether the password is cleartext, and specify
if the authentication is performed with a DES card. The following example shows a user aaaa, who
has authentication configured for CHAP and login. The users CHAP password, “chap password,” is
shown in cleartext and the login password has been encrypted.
user = aaaa
chap = cleartext “chap password”
login = des XQj4892fjk}
• Use password (5) files instead of entering the password into the configuration file directly.
The default authentication is to deny authentication. You can change this at the top level of the
configuration file to have the default use passwd(5) file, by issuing the following command:
default authentication = /etc/passwd
• Authenticate using an s/key. If you have built and linked in an s/key library and compiled
TACACS+ to use the s/key, you can specify that a user be authenticated using the s/key, as shown
in the following example:
user= bbbb {login = skey}
On the Cisco AS5800, configure authentication on all lines including the VTY and Console lines by
entering the following commands:
5800-1# configure terminal
5800-1(config)# aaa new-model
5800-1(config)# aaa authentication login default tacacs+ enable
Caution When you issue the aaa authentication login default tacacs+ enable command, you are
specifying that if your TACACS+ server fails to respond (because it is set up incorrectly),
you can log in to the Cisco AS5800 by using your enable password. If you do not have an
enable password set on the Cisco AS5800, you will not be able to log in until you have a
functioning TACACS+ daemon configured with user names and passwords. The enable
password in this case is a last-resort authentication method. You can also specify none as
the last-resort method, which means that no authentication is required if all other methods
have failed.
- Cisco AS5800 Operations 1
- Provisioning Guide 1
- CONTENTS 3
- 2 Commissioning 2-1 4
- 3 Operations 3-1 5
- 4 Administration 4-1 5
- 5 Maintenance 5-1 6
- 6 Provisioning 6-1 6
- Contents 7
- Document Objectives 9
- Audience 9
- Document Organization 10
- Document Conventions 10
- Safety Warnings 11
- Related Documentation 12
- For More Information 14
- Obtaining Documentation 14
- Ordering Documentation 15
- Documentation Feedback 15
- Cisco.com 15
- Technical Assistance Center 16
- Introduction 19
- Chapter1 Introduction 20
- Cisco AS5800 Hardware Review 21
- System Architecture 22
- ROM Monitor 22
- Chapter 1 Introduction 23
- IP Subnetting Plan 24
- Device Parameters 25
- User Interface Command Modes 26
- Command Modes 27
- Context-Sensitive Help 28
- Basic Cisco AS5800 Start Up 29
- Cisco AS5800 First-Time Boot 33
- Using the Setup Script 34
- Passwords 35
- Commissioning 43
- Chapter 2 Commissioning 44
- Call-Processing Components 45
- Task 1. Verifying Basic Setup 47
- Inspecting the Dial Shelf 51
- DSC Troubleshooting Tips 52
- Using DSIP 54
- Investigating Memory Usage 61
- Verifying CPU Utilization 63
- Table 2-5 Local AAA Commands 65
- Setting Up a Log In Banner 66
- Configuring Basic IP 67
- Table 2-7 Alarm Conditions 72
- Table 2-9 IP Routing Commands 77
- Figure 2-6 Test Environment 79
- Operations 83
- Async DataComm Model 84
- Verifying Modem Performance 86
- V.34 Basic Rules 89
- V.90 Basic Rules 90
- Configuring IPCP Options 108
- Configuring LCP Options 109
- Enabling PPP Autoselect 110
- Troubleshooting Flow Diagrams 113
- DOC-7810814= 114
- Chapter 3 Operations 114
- Inspecting Active Call States 116
- Modem Management Operations 122
- Managing Modem Firmware 123
- Inspecting Modem Firmware 124
- Upgrading Modem Firmware 126
- Using Modem Call-Record Terse 136
- Using SNMP 136
- Administration 139
- Table 4-1 RMON Groups 140
- Chapter 4 Administration 141
- Enabling Syslog 142
- Enabling SNMP 145
- Table 4-4 SNMP Commands 146
- XL1 installed 148
- Access Service Security 151
- Configuring RADIUS 152
- RADIUS Operation 153
- AAA Commands 161
- RADIUS Commands 161
- Configuring TACACS+ 162
- Enabling AAA Globally 167
- Identify a List Name 168
- • Users Dialing In Using PPP 170
- Users Dialing In Using PPP 171
- Login Authentication Example 171
- TACACS+ Authorization 172
- Authorization Examples 175
- TACACS+ Security Examples 176
- Maintenance 179
- Chapter 5 Maintenance 180
- Replacement Procedures 180
- Tools and Parts Required 182
- Removing a Power Entry Module 182
- –48V –48V 185
- Replacing a Filter Module 186
- Removing a Filter Module 187
- Replacing the Filter Module 190
- Panel fastener 194
- Connecting the Cables 197
- Replacing a Flash Memory Card 200
- Removing a Flash Memory Card 202
- Replacing the Blower Assembly 203
- Port adapter lever 206
- Slot number 206
- Unlocked position 206
- Locked position 206
- ORK PROCESSING ENGINE-150 211
- Power switches 211
- AC-input power 214
- AC power cable 214
- Figure 5-30.) 217
- Figure 5-31.) 218
- Filter module 219
- Back cover 219
- Backplane module 220
- Replacing the Backplane 221
- Troubleshooting 222
- AS5800 Dial Shelf 223
- Feature Cards 223
- Controller T1 223
- General Configuration 224
- Async Calls 225
- Interactive Async User 225
- Interactive Users 226
- Dedicated-PPP Users 227
- PPP Users 227
- Sync Calls 228
- SGBP Troubleshooting 229
- Provisioning 231
- Figure 6-1 Business Scenario 232
- Chapter 6 Provisioning 233
- Cisco IOS Upgrades 235
- Software Upgrade Requisites 236
- Memory Requirements 236
- Installing New IOS Software 238
- Upgrading the DSC Software 239
- Software Upgrade Verification 242
- Modem Upgrading 243
- Modem Upgrades 244
- Modem Operation at Bootup 247
- Split Dial Shelves 248
- TDM Resource Allocation 249
- Changing Slot Sets 250
- Leaving Split Mode 251
- Managing a Split Dial Shelf 253
- Explanation 254
- Router-Shelf Redundancy 257
- External Services 258
- Configuring Redundancy 258
- Redundancy Show Commands 259
- Advanced Quick Reference 261
- Functional Components 262
- Egress Interface 263
- Loopback Interface 264
- Routing Protocol 265
- Ingress Interface 266
- T3 Ingress Configuration 267
- T1 Ingress Configuration 268
- Line Signaling 269
- D-Channels (ISDN) 270
- D-Channel Configuration 271
- AAA Plan and Requisites 272
- To Modify, Copy, & Paste 273
- Sample Configuration 273
- AAA Accounting Configuration 274
- Command Line Description 275
- Modem Pools 276
- Modem Pool Configuration 277
- TTY Line 278
- Async Interface 279
- Async Interface Configuration 280
- Dial Interface 281
- Dial Interface Configuration 282
- IP Address Pools 283
- Virtual Template 285
- SGBP Requisites 286
- SGBP Configuration 286
- VPDN Requisites 287
- VPDN Configuration 288
- SNMP Requisites 288
- SNMP Configuration 288
- Virtual Profiles 289
- Multilink Virtual Template 290
- V.120 Support 291
- Global Parameters 292
- Global Parameter Requisites 293
- Final Operational Requisites 294
- GLOSSARY 297
- Glossary 298
- World Wide Web (WWW) 315
- OL-0552-01 317
Related products and manuals for Servers Cisco AS5800
Servers Cisco UCS C240 M3 Specifications
(60 pages)
(60 pages)
Servers Cisco 6200 User Manual
(4 pages)
(4 pages)
Servers Cisco UCS C200 Installation Guide
(30 pages)
(30 pages)
Servers Cisco 7008 User Manual
(9 pages)
(9 pages)
Servers Cisco 32369 User Manual
(52 pages)
(52 pages)
Servers Cisco TD 92322GB Installation Guide
(34 pages)
(34 pages)
Servers Cisco AS5800 Installation Guide
(34 pages)
(34 pages)
Servers Cisco 700 Series User Manual
(6 pages)
(6 pages)
© 2020, manymanuals.com. All rights reserved. | 0.246 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals