Reference (Supporting ADX v03.1.00) Owner's manual
36 Brocade Virtual ADX MIB Reference
53-1003312-01
Authorization and accounting
• aaa authentication login default TACACS+
• aaa authentication enable default TACACS+
• aaa authentication enable implicit-user
The snAgGblPassword object must be set for the following objects:
• snAgCfgLoad
• snAgImgLoad
• snAgConfigFromNVRAM
• snAgEraseNVRAM
• snAgWriteNVRAM
• snAgGblTelnetPassword
• snAgReload
• snAgSystemLog
Authorization and accounting
The following objects are for authorization, and accounting functions.
Name, OID, and Syntax Access Description
snAuthorizationCommand Methods
brcdIp.1.1.3.15.2.1
Syntax: OctetString
Read-write Specifies the sequence of authorization methods.
This object can have zero to three octets. Each octet
represents a method to authorize the user command. Each
octet has the following value:
• radius(2) – Authorize by the requesting RADIUS server
• tacplus(5) – Authorize by requesting TACACS server
• none(6) – Skip authorization
Setting a zero length octet string invalidates all previous
authorization methods.
snAuthorizationCommandLevel
brcdIp.1.1.3.15.2.2
Syntax: IpAddress
Read-write Specifies the commands that need to be authorized. Any
command that is equal to or less than the selected level will
be authorized:
• level(0) – Privilege level 0
• level(4) – Privilege level 4
• level(5) – Privilege level 5
snAuthorizationExec
brcdIp.1.1.3.15.2.3
Syntax: OctetString
Read-write Shows the sequence of authorization methods for exec
programs.
This object can have zero to three octets. Each octet
represents a method for Telnet or SSH login authorization.
Each octet can have one of the following values:
• radius(2) – Send EXEC authorization request to RADIUS
server
• tacplus(5) – Send EXEC authorization request to
TACACS+ server
• none(6) – No EXEC authorization method
Setting a zero length octet string invalidates all authorization
methods.