Manualshelf

Concept Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S4820T
851852853854855856857858859860
replay-prot-window minutes
NAS considers the new replay protection window value from next window period. The range is from 1 to 10 minutes. The default is 5
minutes.
Dell(conf-dynamic-auth#)replay-prot-window 10
Rate-limiting RADIUS packets
NAS enables you to allow or reject RADIUS dynamic authorization packets based on the rate-limiting value that you specify.
NAS lets you to congure number of RADIUS dynamic authorization packets allowed per minute. The default value is 30 packets per
minute. NAS discards the packets, if the number of RADIUS dynamic authorization packets in the current interval cross the congured
rate-limit value.
Enter the following command to congure rate-limiting:
rate-limit number
NAS considers the rate limit change value from the next interval period. The range is from 10 to 60 packets per minute. The default is
30 packets per minute.
Dell(conf-dynamic-auth#)rate-limit 50
Conguring time-out value
You can congure a time-out value for the back-end task to respond to CoA or DM requests.
This setting enables the DAS to determine the amount of time to wait before a back-end response is received. The default value is 10
minutes.
Enter the following command to congure the time-out value:
da-rsp-timeout value
Dell(conf-dynamic-auth#)da-rsp-timeout 20
Role-Based Access Control
With Role-Based Access Control (RBAC), access and authorization is controlled based on a user’s role. Users are granted permissions
based on their user roles, not on their individual user ID. User roles are created for job functions and through those roles they acquire the
permissions to perform their associated job function.
This chapter consists of the following sections:
Overview
Privilege-or-Role Mode Versus Role-only Mode
Conguring Role-based Only AAA Authorization
System-Dened RBAC User Roles
Creating a New User Role
Modifying Command Permissions for Roles
Adding and Deleting Users from a Role
Role Accounting
Conguring AAA Authentication for Roles
Conguring AAA Authorization for Roles
Conguring an Accounting for Roles
852
Security