Manualshelf

HP Intelligent Management Center v5.1 TACACS+ Authentication Manager Administrator Guide

ManualsBrandsHP ManualsComputer AccessoriesHP IMC TACACS+ Authentication Manager additional Unlimited-node License
31323334353637383940
32
A device area that contains a device or a sub-area. To delete such a device area, move the device
to another area, or delete the sub-area first. For more information about moving a device between
device areas, see "
Modifying the device area and type."
To delete a device area or a sub-area:
1. Click the Service tab.
2. Select TACACS+ AuthN Manager > Authorization Scenarios > Device Areas from the navigation
tree.
The Device Area List displays all device areas.
3. Click the Delete icon for the device area or sub-area you want to delete.
4. Click OK.
Viewing devices in a device area or sub-areas
If you view devices of a device area that contains sub-areas, TAM displays all devices contained in the
sub-areas of the device area.
To view the devices in a device area (or those in its sub-areas):
1. Click the Service tab.
2. Select TACACS+ AuthN Manager > Authorization Scenarios > Device Areas from the navigation
tree.
The Device Area List displays all device areas.
3. Click the Device List icon of a device area.
The Device List page appears. In the Query Devices area, TAM automatically sets the selected
device area as the query criteria and displays in the Device List the query result, which includes all
devices contained in the device area or those in its sub-areas. For more information about the
device list, see "Viewing the device list."
Managing device types
Device type refers to the vendors and types of the devices.
A network may comprise devices from different vendors or of different types, and these devices support
different command lines. Operators need to assign different command sets to device users for them to
manage devices of different types. A usual practice is as follows:
1. Categorize the devices in TAM by device type.
2. Configure the authorization policy to authorize to device users different command sets based on
device type. For information about configuring an authorization policy, see "Authorization
policy."
With the previous configuration, after a user logs in to a device, TAM can perform command line
authorization for the user based on the device type.
TAM supports hierarchical management of devices by device type. A level-1 (top level) device type can
be further divided into multiple level-2 device types, and a maximum of 5 device type levels can be
created. Two device types in adjacent levels are referred to as parent type and child type, respectively.
For example, a level-1 device type is the parent type of all its level-2 types, and the level-2 device types
are the child types of the level-1 device type.