Cisco AS5800 Specifications Page 167
- Page / 334
- Table of contents
- TROUBLESHOOTING
- BOOKMARKS
Rated. / 5. Based on customer reviews
4-29
Cisco AS5800 Operations, Administration, Maintenance, and Provisioning Guide
DOC-7810814=
Chapter 4 Administration
Access Service Security
Enabling AAA Globally
To use the AAA security facility in the Cisco IOS software, you must issue the aaa new-model
command from global configuration mode.
When you issue the aaa new-model command, all lines on the Cisco AS5800 receive the implicit
login authentication default method list, and all interfaces with PPP enabled have an implicit
ppp authentication pap default method list applied.
Caution If you authenticate users by a security server, do not inadvertently lock yourself out of the
Cisco AS5800 ports after you issue the aaa new-model command. Enter line configuration
mode and issue the aaa authentication login default tacacs+ enable global configuration
command. This command specifies that if your TACACS+ (or RADIUS) server is not
functioning properly, you can enter your enable password to log in to the Cisco AS5800.
In general, verify that you have a last-resort access method before you are certain that your
security server is set up and functioning properly. For more information about the
aaa authentication command, refer to the “Defining Authentication Method Lists” section
on page 4-29.
Note Cisco recommends that you use CHAP authentication with PPP, rather than PAP. CHAP
passwords are encrypted when they cross the network, whereas PAP passwords are
cleartext when they cross the network. The Cisco IOS software selects PAP as the default,
so you must manually select CHAP. The process for specifying CHAP is described in
Applying Authentication Method Lists, page 4-33.
5800-1# configure terminal
5800-1(config)# aaa new-model
Defining Authentication Method Lists
After you enable AAA globally on the Cisco AS5800, you need to define authentication method lists,
which you then apply to lines and interfaces. These authentication method lists are security profiles that
indicate the protocol (PPP) or login and authentication method (TACACS+, RADIUS, or local
authentication).
To define an authentication method list:
1. Issue the aaa authentication command.
2. Specify protocol (PPP) or login authentication.
3. Identify a list name or default. A list name is any alphanumeric string you choose. You assign
different authentication methods to different named lists.
4. Specify the authentication method. You can specify multiple methods, such as tacacs+, followed by
local if a TACACS+ server is not available on the network.
5. Populate the local username database if you specified local as the authentication method (or one of
the authentication methods). To use a local username database, you must issue the username global
configuration command. Refer to the “Populate the Local Username Database if Necessary” section
on page 4-32.
After defining these authentication method lists, apply them to your interfaces (synchronous or
asynchronous) configured for PPP.
- Cisco AS5800 Operations 1
- Provisioning Guide 1
- CONTENTS 3
- 2 Commissioning 2-1 4
- 3 Operations 3-1 5
- 4 Administration 4-1 5
- 5 Maintenance 5-1 6
- 6 Provisioning 6-1 6
- Contents 7
- Document Objectives 9
- Audience 9
- Document Organization 10
- Document Conventions 10
- Safety Warnings 11
- Related Documentation 12
- For More Information 14
- Obtaining Documentation 14
- Ordering Documentation 15
- Documentation Feedback 15
- Cisco.com 15
- Technical Assistance Center 16
- Introduction 19
- Chapter1 Introduction 20
- Cisco AS5800 Hardware Review 21
- System Architecture 22
- ROM Monitor 22
- Chapter 1 Introduction 23
- IP Subnetting Plan 24
- Device Parameters 25
- User Interface Command Modes 26
- Command Modes 27
- Context-Sensitive Help 28
- Basic Cisco AS5800 Start Up 29
- Cisco AS5800 First-Time Boot 33
- Using the Setup Script 34
- Passwords 35
- Commissioning 43
- Chapter 2 Commissioning 44
- Call-Processing Components 45
- Task 1. Verifying Basic Setup 47
- Inspecting the Dial Shelf 51
- DSC Troubleshooting Tips 52
- Using DSIP 54
- Investigating Memory Usage 61
- Verifying CPU Utilization 63
- Table 2-5 Local AAA Commands 65
- Setting Up a Log In Banner 66
- Configuring Basic IP 67
- Table 2-7 Alarm Conditions 72
- Table 2-9 IP Routing Commands 77
- Figure 2-6 Test Environment 79
- Operations 83
- Async DataComm Model 84
- Verifying Modem Performance 86
- V.34 Basic Rules 89
- V.90 Basic Rules 90
- Configuring IPCP Options 108
- Configuring LCP Options 109
- Enabling PPP Autoselect 110
- Troubleshooting Flow Diagrams 113
- DOC-7810814= 114
- Chapter 3 Operations 114
- Inspecting Active Call States 116
- Modem Management Operations 122
- Managing Modem Firmware 123
- Inspecting Modem Firmware 124
- Upgrading Modem Firmware 126
- Using Modem Call-Record Terse 136
- Using SNMP 136
- Administration 139
- Table 4-1 RMON Groups 140
- Chapter 4 Administration 141
- Enabling Syslog 142
- Enabling SNMP 145
- Table 4-4 SNMP Commands 146
- XL1 installed 148
- Access Service Security 151
- Configuring RADIUS 152
- RADIUS Operation 153
- AAA Commands 161
- RADIUS Commands 161
- Configuring TACACS+ 162
- Enabling AAA Globally 167
- Identify a List Name 168
- • Users Dialing In Using PPP 170
- Users Dialing In Using PPP 171
- Login Authentication Example 171
- TACACS+ Authorization 172
- Authorization Examples 175
- TACACS+ Security Examples 176
- Maintenance 179
- Chapter 5 Maintenance 180
- Replacement Procedures 180
- Tools and Parts Required 182
- Removing a Power Entry Module 182
- –48V –48V 185
- Replacing a Filter Module 186
- Removing a Filter Module 187
- Replacing the Filter Module 190
- Panel fastener 194
- Connecting the Cables 197
- Replacing a Flash Memory Card 200
- Removing a Flash Memory Card 202
- Replacing the Blower Assembly 203
- Port adapter lever 206
- Slot number 206
- Unlocked position 206
- Locked position 206
- ORK PROCESSING ENGINE-150 211
- Power switches 211
- AC-input power 214
- AC power cable 214
- Figure 5-30.) 217
- Figure 5-31.) 218
- Filter module 219
- Back cover 219
- Backplane module 220
- Replacing the Backplane 221
- Troubleshooting 222
- AS5800 Dial Shelf 223
- Feature Cards 223
- Controller T1 223
- General Configuration 224
- Async Calls 225
- Interactive Async User 225
- Interactive Users 226
- Dedicated-PPP Users 227
- PPP Users 227
- Sync Calls 228
- SGBP Troubleshooting 229
- Provisioning 231
- Figure 6-1 Business Scenario 232
- Chapter 6 Provisioning 233
- Cisco IOS Upgrades 235
- Software Upgrade Requisites 236
- Memory Requirements 236
- Installing New IOS Software 238
- Upgrading the DSC Software 239
- Software Upgrade Verification 242
- Modem Upgrading 243
- Modem Upgrades 244
- Modem Operation at Bootup 247
- Split Dial Shelves 248
- TDM Resource Allocation 249
- Changing Slot Sets 250
- Leaving Split Mode 251
- Managing a Split Dial Shelf 253
- Explanation 254
- Router-Shelf Redundancy 257
- External Services 258
- Configuring Redundancy 258
- Redundancy Show Commands 259
- Advanced Quick Reference 261
- Functional Components 262
- Egress Interface 263
- Loopback Interface 264
- Routing Protocol 265
- Ingress Interface 266
- T3 Ingress Configuration 267
- T1 Ingress Configuration 268
- Line Signaling 269
- D-Channels (ISDN) 270
- D-Channel Configuration 271
- AAA Plan and Requisites 272
- To Modify, Copy, & Paste 273
- Sample Configuration 273
- AAA Accounting Configuration 274
- Command Line Description 275
- Modem Pools 276
- Modem Pool Configuration 277
- TTY Line 278
- Async Interface 279
- Async Interface Configuration 280
- Dial Interface 281
- Dial Interface Configuration 282
- IP Address Pools 283
- Virtual Template 285
- SGBP Requisites 286
- SGBP Configuration 286
- VPDN Requisites 287
- VPDN Configuration 288
- SNMP Requisites 288
- SNMP Configuration 288
- Virtual Profiles 289
- Multilink Virtual Template 290
- V.120 Support 291
- Global Parameters 292
- Global Parameter Requisites 293
- Final Operational Requisites 294
- GLOSSARY 297
- Glossary 298
- World Wide Web (WWW) 315
- OL-0552-01 317
Related products and manuals for Servers Cisco AS5800
Servers Cisco UCS C240 M3 Specifications
(60 pages)
(60 pages)
Servers Cisco 6200 User Manual
(4 pages)
(4 pages)
Servers Cisco UCS C200 Installation Guide
(30 pages)
(30 pages)
Servers Cisco 7008 User Manual
(9 pages)
(9 pages)
Servers Cisco 32369 User Manual
(52 pages)
(52 pages)
Servers Cisco TD 92322GB Installation Guide
(34 pages)
(34 pages)
Servers Cisco AS5800 Installation Guide
(34 pages)
(34 pages)
Servers Cisco 700 Series User Manual
(6 pages)
(6 pages)
© 2020, manymanuals.com. All rights reserved. | 0.502 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals