Manualshelf

Unit installation

ManualsBrandsServer Technology ManualsHome building and DecorPT40
71727374757677787980
72 Advanced Operations Smart Cabinet Distribution Unit
Installation and Operations Manual
Adding serial port access to a TACACS+ account:
The Add PortToTACACS command grants a TACACS+ account access to the serial port.
To grant serial port access to a TACACS+ account:
At the Smart CDU: prompt, type add porttotacacs console and a TACACS+ account number. Press
Enter.
Deleting serial port access for a TACACS+ account:
The Delete PortFromTACACS command removes a TACACS+ account’s access to the serial port.
You cannot remove access to the serial port for an administrative level account.
To delete serial port access for a TACACS+ account:
At the Smart CDU: prompt, type delete portfromtacacs console and a TACACS+ account number.
Press Enter.
Displaying TACACS account access:
The List TacPriv command displays all access rights for a TACACS+ account.
To display TACACS account access:
At the Smart CDU: prompt, type list tacpriv, optionally followed by a TACACS+ account. Press Enter.
Example
The following command displays information about the TACACS+ account 1:
Smart CDU: list tacpriv 1<Enter>
TACACS+ Privilege Level: 1
Ports:
Port ID Port Name
Console Console
TACACS+ Technical Specifications
Authentication START Packet includes:
action = 1 (TAC_PLUS_AUTHEN_LOGIN)
priv_lvl = 0 (TAC_PLUS_PRIV_LVL_MIN)
authen_type = 1 (TAC_PLUS_AUTHEN_TYPE_ASCII)
service = 1 (TAC_PLUS_AUTHEN_SVC_LOGIN)
user = (entered username)
port = (access path into the Sentry)
rem_addr = ‘Sentry3_xxxxxx’ (xxxxxx is last six digits of MAC address)
data = ‘‘ (null)
NOTE: The password is sent in a CONTINUE packet.
Authorization REQUEST Packet includes:
authen_method = 6 (TAC_PLUS_AUTHEN_METH_TACACSPLUS)
priv_lvl = 0 (TAC_PLUS_PRIV_LVL_MIN)
authen_type = 1 (TAC_PLUS_AUTHEN_TYPE_ASCII)
authen_service = 1 (TAC_PLUS_AUTHEN_SVC_LOGIN)
user = (entered username)
port = (access path into the Sentry)
rem_addr = ‘Sentry3_xxxxxx’ (xxxxxx is last six digits of Ethernet MAC address)
service = ‘shell’ (for exec)
cmd = ‘‘ (null)
NOTE: The access paths into the Sentry which support TACACS+ are ‘Console’, ‘Telnet’, ‘SSH’, ‘HTTP’ and
‘HTTPS’. In the case of ‘Console’ and ‘Modem’, an administrator is allowed to rename these ports in which case the
assigned name is used.