Reference Guide

This chapter describes several ways to provide access security to the Dell Networking system.

Reference Guide.

• Role-Based Access Control

• AAA Accounting

• AAA Authentication

• Obscuring Passwords and Keys

• AAA Authorization

• RADIUS

• TACACS+

permissions based on their user roles, not on their individual user ID. User roles are created for job functions and through those

roles they acquire the permissions to perform their associated job function.

This section contains the following sections:

● Overview of RBAC

● Privilege-or-role Mode versus Role-only Mode

● Configuring Role-based Only AAA Authorization

● System-Defined RBAC User Roles

● User Roles

● Role Accounting

● AAA Authentication and Authorization for Roles

The Dell Networking OS supports the constrained RBAC model. With a constrained RBAC model, you can inherit permissions

when you create a new user role, restrict or add commands a user can enter and the actions the user can perform. This allows

for greater flexibility in assigning permissions for each command to each role and as a result, it is easier and much more efficient

to administer user rights. If a user’s role matches one of the allowed user roles for that command, then command authorization

is granted.